VYPR
High severity8.8NVD Advisory· Published Oct 17, 2019· Updated Jun 17, 2026

CVE-2019-16917

CVE-2019-16917

Description

WiKID Enterprise 2FA (two factor authentication) Enterprise Server through 4.2.0-b2047 is vulnerable to SQL injection through the searchDevices.jsp endpoint. The uid and domain parameters are used, unsanitized, in a SQL query constructed in the buildSearchWhereClause function.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1
  • WiKID/Enterprise 2FA Enterprise Serverdescription

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.