CVE-2018-13442

Publication date

2019-07-16 17:56:43

Family

mitre

State

PUBLISHED

Description

SolarWinds Network Performance Monitor 12.3 allows SQL Injection via the /api/ActiveAlertsOnThisEntity/GetActiveAlerts TriggeringObjectEntityNames parameter.