Multiple SQL injection vulnerabilities in Carlo Gavazzi EOS-Box with firmware before 1.0.0.1080_2.1.10 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, a similar issue to CVE-2012-5861.Referenceshttp://www.us-cert.gov/control_systems/pdf/ICSA-12-354-02.pdf
