2021-02-17 13:30:20
twcert
PUBLISHED
The HR Portal of Soar Cloud System fails to filter specific parameters. Remote attackers can inject SQL syntax and obtain all data in the database without privilege.