2014-10-10 14:00:00
mitre
PUBLISHED
SQL injection vulnerability in Epicor Procurement before 7.4 SP2 allows remote attackers to execute arbitrary SQL commands via the User field.