Cisco Security Advisory – Cisco Wireless Control System (WCS) contains a SQL injection vulnerability that could allow an authenticated attacker full access to the vulnerable device, including modification of system configuration; create, modify and delete users; or modify the configuration of wireless devices managed by WCS.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/92702/cisco-sa-20100811-wcs.txt
Source: https://packetstormsecurity.com/files/92702/Cisco-Security-Advisory-20100811-wcs.html