Security Advisory

CVE-2020-8967

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-06-01 13:05:29

Last updated 2024-09-16 16:42:51

Assigner INCIBE

State PUBLISHED

Description

There is an improper Neutralization of Special Elements used in an SQL Command (SQL Injection) vulnerability in php files of GESIO ERP. GESIO ERP all versions prior to 11.2 allows malicious users to retrieve all database information.

← Browse all CVEs View on cve.org ↗