CVE-2014-0763

Multiple SQL injection vulnerabilities in DBVisitor.dll in Advantech WebAccess before 7.2 allow remote attackers to execute arbitrary SQL commands via SOAP requests to unspecified functions.

Date published : 2014-04-11

http://www.securityfocus.com/bid/66740

http://ics-cert.us-cert.gov/advisories/ICSA-14-079-03