CVE-2013-7232 Information

Description

SQL injection vulnerability in ESRI ArcGIS for Server through 10.2 allows remote attackers to execute arbitrary SQL commands via unspecified input to the map or feature service.

Reference

http://support.esri.com/en/downloads/patches-servicepacks/view/productid/66/metaid/2009