SQL Injection Vulnerability in NeDi 1.7Cp3's query.php Component

SQL Injection Vulnerability in NeDi 1.7Cp3's query.php Component

CVE-2018-20730 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

A SQL injection vulnerability in NeDi before 1.7Cp3 allows any user to execute arbitrary SQL read commands via the query.php component.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.