2024-04-19 00:00:00
mitre
PUBLISHED
SQL Injection vulnerability in autoexpress v.1.3.0 allows attackers to run arbitrary SQL commands via the carId parameter.