SQL injection vulnerability in Invensys Wonderware Information Server (WIS) 4.0 SP1SP1, 4.5- Portal, and 5.0- Portal allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
2013-05-09T12:31:18.950
2025-04-11T00:51:21.963
Deferred
CVSSv2: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | invensys | wonderware_information_server | 4.0 | Yes |
| Application | invensys | wonderware_information_server | 4.5 | Yes |
| Application | invensys | wonderware_information_server | 5.0 | Yes |