CVE-2020-12507 Information

Description

In s::can moni::tools before version 4.2 an authenticated attacker could get full access to the database through SQL injection. This may result in loss of confidentiality loss of integrity and DoS.

Reference

https://www.s-can.at/en/the-new-monitool-v4-2-security-first/