Unrated severityNVD Advisory· Published Feb 21, 2012· Updated Jun 16, 2026
CVE-2012-1234
CVE-2012-1234
Description
SQL injection vulnerability in Advantech/BroadWin WebAccess 7.0 allows remote authenticated users to execute arbitrary SQL commands via a malformed URL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0234.
Affected products
3- Range: =7.0
Patches
Vulnerability mechanics
References
1- www.us-cert.gov/control_systems/pdf/ICSA-12-047-01.pdfnvdPatchUS Government Resource
News mentions
0No linked articles in our index yet.