{“lastseen”:””,”description”:”Successful exploitation of the SQL injection vulnerability could allow a remote authenticated attacker to\\nexecute arbitrary commands via a specific interface,\\npotentially enabling the attacker to access, modify, or delete sensitive\\ninformation within the database.”,”published”:”2026-05-13T03:16:24.701Z”,”modified”:”2026-05-13T03:16:24.701Z”,”type”:”cve”,”title”:”SQL Injection Vulnerability”,”source”:”CSA”,”references”:”https:\/\/www.csa.gov.sg\/alerts-and-advisories\/alerts\/al-2026-050\/”,”id”:”CVE-2026-6888″,”bulletinFamily”:””,”cwe”:null,”cvelist”:null,”sourceData”:”Advantech SaaS Composer prior to version 3.4.17\\nAdvantech IoTSuite Growth Linux docker prior to version 2.2.0\\nAdvantech IoTSuite Starter Linux docker prior to version 2.2.0\\nAdvantech IoT Edge Linux docker prior to version 2.2.0\\nAdvantech IoT Edge Windows prior to version 2.2.0\\nAdvantech WebAccess\/SCADA prior to version 9.2.3\\nAdvantech WebAccess SaaS-Composer prior to version 3.4.17.1\\nAdvantech ECOWatch SaaS-Composer prior to version 3.4.17″,”sourceHref”:””,”cvss”:{“score”:7.2,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:H\/UI:N\/S:U\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”SaaS Composer”,”version”:”prior to version 3.4.17″,”vendor”:”Advantech”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”Successful exploitation of the SQL injection vulnerability could allow a remote authenticated attacker to\\nexecute arbitrary commands via a specific interface,\\npotentially enabling the attacker to access,…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,39,12,15,13,7,11,5],"class_list":["post-53938","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-72","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n