CVE-2017-20042
The vulnerability affects Navetti PricePoint 4.6.0.0 . It arises from an issue in an unknown functionality that enables blind SQL injection , which can be exploited remotely. The issue is addressed by upgrading to 4.7.0.0 ; applying this version is the recommended remediation.