2 matches found
CVE-2019-15574
Gesior-AAC before 2019-05-01 allows serviceID SQL injection in accountmanagement.php...
CVE-2019-15574
Gesior-AAC before 2019-05-01 has a serviceID SQL injection in accountmanagement.php. Root cause: lack of validation/sanitization of externally entered SQL statements in a database-based application. Impact: allows execution of arbitrary SQL commands (partial/high confidentiality, integrity, and a...