EmreOvunc/OpenSource-ERP-SQL-Injection

Releases0

Stars5

CVE-2019-5893 | OpenSource ERP application has SQL Injection vulnerability.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-5893 ↗	Jan 10, 2019Thursday, 10 January 2019, 17:29	—	7.5 HIGH
Nelson Open Source ERP v6.3.1 allows SQL Injection via the db/utils/query/data.xml query parameter.