2023-09-18 02:33:59
twcert
PUBLISHED
SUNNET WMPro portals FAQ function has insufficient validation for user input. An unauthenticated remote attacker can inject arbitrary SQL commands to obtain sensitive information via a database.