CVE-2020-12606 – An issue was discovered in DB Soft SGLAC before 20.05.001. The ProcedimientoGenerico metho …

17 August 2020

Vuln ID: CVE-2020-12606

Published: 2020-08-17 14:15:13Z

Description: An issue was discovered in DB Soft SGLAC before 20.05.001. The ProcedimientoGenerico method in the SVCManejador.svc webservice of the SGLAC web frontend allows an attacker to run arbitrary SQL commands on the SQL Server. Command execution can be easily achieved by using the xp_cmdshell stored procedure.

Source: NVD.NIST.GOV

Date:

17 August 2020

Categorie(s):

NVD

Tag(s):

NVD

SailPoint’s approach to unified identity security for the modern enterprise17 May 2024
AI SOC Solutions, Revamp Your Cybersecurity, & Nightwing Introduction – Jon Check, Ricardo Villadiego, Jim McDonough – ESW #36217 May 2024
AI-generated code top cloud security concern amid 100% use rate in survey17 May 2024
Post-RSAC, Our Heads Are Spinning, and Big News Keeps on Coming! – ESW #36217 May 2024
Arizona woman accused of helping North Koreans get remote IT jobs at 300 companies17 May 2024