CVE-2018-12977

2018-07-09T18:29:00
ID CVE-2018-12977
Type cve
Reporter cve@mitre.org
Modified 2018-09-05T15:41:00

Description

A SQL injection vulnerability in the SoftExpert (SE) Excellence Suite 2.0 allows remote authenticated users to perform SQL heuristics by pulling information from the database with the "cddocument" parameter in the "Downloading Electronic Documents" section.