VYPR

WebAccess

by Webace

CVEs (2)

  • CVE-2017-16720CriJan 5, 2018
    risk 0.71cvss 9.8epss 0.50

    A Path Traversal issue was discovered in WebAccess versions 8.3.2 and earlier. An attacker has access to files within the directory structure of the target device.

  • CVE-2017-16716CriJan 5, 2018
    risk 0.67cvss 9.8epss 0.06

    A SQL Injection issue was discovered in WebAccess versions prior to 8.3. WebAccess does not properly sanitize its inputs for SQL commands.