CVE-2019-5893

Nelson Open Source ERP v6.3.1 allows SQL Injection via the db/utils/query/data.xml query parameter.
References
Link Resource
https://github.com/EmreOvunc/OpenSource-ERP-SQL-Injection Exploit Third Party Advisory
https://www.exploit-db.com/exploits/46118/ Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:nelson-it:open_source_erp:6.3.1:*:*:*:*:*:*:*

Information

Published : 2019-01-10 05:29

Updated : 2019-01-17 02:59


NVD link : CVE-2019-5893

Mitre link : CVE-2019-5893

Products Affected
No products.
CWE