CVE-2018-7802

Name of the Vulnerable Software and Affected Versions EVLink Parking versions 3.2.0-12 v1 and earlier

Description A SQL Injection issue exists, which could allow a remote attacker to gain access to the web interface with full privileges. The vulnerability is related to a lack of protection measures for the SQL query structure, enabling potential exploitation.

Recommendations For EVLink Parking versions 3.2.0-12 v1 and earlier, consider restricting access to the web interface as a temporary mitigation measure until a patch is available. Avoid using potentially vulnerable SQL queries in the affected interface until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.