Unauthenticated SQL injection via the username in the login mechanism in Blaauw Remote Kiln Control through v3.00r4 allows a user to extract arbitrary data from the rkc database.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-05-07T13:03:01
Updated: 2024-08-05T02:02:39.527Z
Reserved: 2019-11-11T00:00:00
Link: CVE-2019-18866
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-05-07T14:15:11.650
Modified: 2020-05-15T14:36:24.367
Link: CVE-2019-18866
Redhat
No data.