Critical severity9.8NVD Advisory· Published Feb 10, 2019· Updated Jun 17, 2026
CVE-2018-13792
CVE-2018-13792
Description
Multiple SQL injection vulnerabilities in the monitoring feature in the HTTP API in ABBYY FlexiCapture before 12 Release 2 allow an attacker to execute arbitrary SQL commands via the mask, sortOrder, filter, or Order parameter.
Affected products
1- Range: < 12 Release 2
Patches
Vulnerability mechanics
References
1- www.abbyydownloads.com/fc12/ReleaseNotes_FC12_R2_U6_1299.29_build_12.0.2.1420.pdfnvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.