Critical severity9.8NVD Advisory· Published Jun 21, 2019· Updated Jun 17, 2026
CVE-2018-15868
CVE-2018-15868
Description
SQL injection vulnerability in ChronoScan version 1.5.4.3 and earlier allows an unauthenticated attacker to execute arbitrary SQL commands via the wcr_machineid cookie.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ChronoScan/ChronoScandescription
- Range: <=1.5.4.3
Patches
Vulnerability mechanics
References
2- redsec.io/chronoscan-enterprise-unauthenticated-sql-injectionnvdExploitThird Party Advisory
- www.chronoscan.orgnvdVendor Advisory
News mentions
0No linked articles in our index yet.