CVE-2014-0763 Information

Description

Multiple SQL injection vulnerabilities in DBVisitor.dll in Advantech WebAccess before 7.2 allow remote attackers to execute arbitrary SQL commands via SOAP requests to unspecified functions.

Reference

http://ics-cert.us-cert.gov/advisories/ICSA-14-079-03 http://www.securityfocus.com/bid/66740