CVE-2018-12977

A SQL injection vulnerability in the SoftExpert (SE) Excellence Suite 2.0 allows remote authenticated users to perform SQL heuristics by pulling information from the database with the "cddocument" parameter in the "Downloading Electronic Documents" section.
References
Link Resource
https://www.exploit-db.com/exploits/44981/ Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:a:softexpert:excellence_suite:2.0:*:*:*:*:*:*:*

Information

Published : 2018-07-09 06:29

Updated : 2018-09-05 03:41


NVD link : CVE-2018-12977

Mitre link : CVE-2018-12977

Products Affected
No products.
CWE