PT-2017-14034 · E Sic · E-Sic
Name of the Vulnerable Software and Affected Versions: E-Sic version 1.0 Description: A SQL Injection issue exists in the password reset parameter, specifically the cpfcnpj parameter to the "/reset" URI. Recommendations: For E-Sic version 1.0, avoid using the cpfcnpj parameter in the /reset URI...