2025-08-12 17:09:42
microsoft
PUBLISHED
Improper neutralization of special elements used in an sql command (sql injection) in SQL Server allows an authorized attacker to elevate privileges over a network.