CVE-2019-9047

Publication date

2019-02-23 21:00:00

Family

mitre

State

PUBLISHED

Description

GoRose v1.0.4 has SQL Injection when the order_by or group_by parameter can be controlled.