2025-08-12 17:10:30
microsoft
PUBLISHED
Improper neutralization of special elements used in an sql command (sql injection) in SQL Server allows an authorized attacker to elevate privileges over a network.