A SQL Injection issue exists in WebAccess versions before 8.3. WebAccess does not properly sanitize its inputs for SQL commands.
advantech webaccess