Описание
SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window. Lack of input validation allows an authenticated attacker to prepare a malicious query to the database that will be executed. This issue was fixed in 6.30@A04.4_u06.
EPSS
Процентиль: 22%
0.00307
Низкий
Дефекты
CWE-89
Связанные уязвимости
github
4 месяца назад
SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window. Lack of input validation allows an authenticated attacker to prepare a malicious query to the database that will be executed. This issue was fixed in 6.30@A04.4_u06.
EPSS
Процентиль: 22%
0.00307
Низкий
Дефекты
CWE-89