CVE-2020-13877

Name of the Vulnerable Software and Affected Versions ResourceXpress Meeting Monitor version 4.9

Description The issue concerns SQL Injection problems in various ASPX pages, which could lead to remote code execution and information disclosure.

Recommendations For ResourceXpress Meeting Monitor version 4.9, consider temporarily restricting access to the vulnerable ASPX pages until a patch is available. As a mitigation measure, review and modify the SQL queries to prevent injection attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.