2 matches found
CVE-2019-6296
Cleanto 5.0 has SQL Injection via the assets/lib/exportajax.php id parameter...
CVE-2019-6296
CVE-2019-6296 affects Cleanto 5.0. The vulnerability is a SQL injection in the assets/lib/export_ajax.php id parameter, enabling a crafted input to alter queries. The CVSS data indicate high severity (CVSS v3 base score 9.8, CRITICAL, with Network attack, no authentication, and impacts to confide...