CVE-2019-19245

2019-12-02T14:15:00
ID CVE-2019-19245
Type cve
Reporter cve@mitre.org
Modified 2019-12-11T20:23:00

Description

NAPC Xinet Elegant 6 Asset Library 6.1.655 allows Pre-Authentication SQL Injection via the /elegant6/login LoginForm[username] field when double quotes are used.