04 Juil 2019
Vulnérabilité CVE-2019-13292 CVE Vulnerability
A SQL Injection issue was discovered in webERP 4.15. Payments.php accepts payment data in base64 format. After this is decoded, it is deserialized. Then, this deserialized data goes directly into a SQL query, with no sanitizing checks. (CVSS:0.0) (Last Update:2019-07-04)
Vulnerability Details : A SQL Injection issue was discovered in webERP 4.15. Payments.php accepts payment data in base64 format. After this is decoded, it is deserialized. Then, this deserialized data goes directly into a SQL query, with no sanitizing checks. Publish Date : 2019-07-04 Last Update Date : 2019-07-04 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2019-13292
- References For CVE-2019-13292
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2019-13292There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |