2025-11-11 17:59:46
microsoft
PUBLISHED
Improper neutralization of special elements used in an sql command (sql injection) in SQL Server allows an authorized attacker to elevate privileges over a network.