2025-08-12 17:09:55
microsoft
PUBLISHED
Improper neutralization of special elements used in an sql command (sql injection) in SQL Server allows an authorized attacker to elevate privileges over a network.