2026-03-10 17:05:07
microsoft
PUBLISHED
Improper neutralization of special elements used in an sql command (sql injection) in SQL Server allows an authorized attacker to elevate privileges over a network.