SQL Injection Vulnerability in Cisco WCS
August 12, 2010 Leave a comment
Cisco Wireless Control System (WCS) contains a SQL injection vulnerability that could allow an authenticated attacker full access to the vulnerable device, including modification of system configuration; create, modify and delete users; or modify the configuration of wireless devices managed by WCS.
This has been fixed in version 22.214.171.124.
More details at: