2 matches found
CVE-2018-12977
A SQL injection vulnerability in the SoftExpert SE Excellence Suite 2.0 allows remote authenticated users to perform SQL heuristics by pulling information from the database with the "cddocument" parameter in the "Downloading Electronic Documents" section...
CVE-2018-12977
CVE-2018-12977: A SQL injection vulnerability in SoftExpert Excellence Suite 2.0 allows remote authenticated users to pull information from the database via the cddocument parameter in the Downloading Electronic Documents section. The NVD metrics indicate CVSSv3.0 base score 8.8 (HIGH) with NETWO...