Security Advisory

CVE-2021-26751

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-02-12 20:35:48

Last updated 2024-08-03 20:33:40

Assigner mitre

State PUBLISHED

Description

NeDi 1.9C allows an authenticated user to perform a SQL Injection in the Monitoring History function on the endpoint /Monitoring-History.php via the det HTTP GET parameter. This allows an attacker to access all the data in the database and obtain access to the NeDi application.

← Browse all CVEs View on cve.org ↗