CVE-2019-18663
CVE-2019-18663 affects ARP-GUARD 4.0.0-5. The connected CNVD/NVD records describe a SQL injection vulnerability in the /login/forgot1 POST endpoint, exploitable by an unauthenticated remote attacker to execute arbitrary SQL via the user_id parameter. Root cause is lack of input validation/paramet...