|Published Date||February 5, 2021|
|Revision Date||February 16, 2021|
The parameters in the pages are vulnerable to SQL injection. Both UNION and Stacked query injections are possible, allowing for full read/write access on the backed databases.
Mutare would like to thank Tesla for reporting this issue and working with Mutare to help protect our customers.