CVE-2023-24788
Published
CVSS v3
8.8
HIGH
CVSS v2
N/A
Affected
2
PROJECTS
Description
NotrinosERP v0.7 was discovered to contain a SQL injection vulnerability via the OrderNumber parameter at /NotrinosERP/sales/customer_delivery.php.
A web-based ERP, Accounting system that written in PHP and MySql includes CRM, Sales, Purchasing, Warehousing, Manufacturing, Payroll & Human Resource... It supports multi user, multi currencies, multi languages, multi level approval workflow.
GitHubGitHub