Advantech iView versions prior to v5.7.03.6112 are vulnerable to a SQL injection, which may allow an malicious user to escalate privileges to 'Administrator'.
advantech iview