45 matches found
CVE-2022-3118
CVE-2022-3118 affects the Sourcecodehero ERP System Project. A SQL injection is triggered via manipulation of the user parameter in /pages/processlogin.php, with_REMOTE exploitability and remote attack vector. Public exploit/disclosure is noted across sources (e.g., NVD/Red Hat/CVE records). The ...
CVE-2022-3118 Sourcecodehero ERP System Project processlogin.php sql injection
A vulnerability was found in Sourcecodehero ERP System Project. It has been rated as critical. This issue affects some unknown processing of the file /pages/processlogin.php. The manipulation of the argument user leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2022-3118 Sourcecodehero ERP System Project processlogin.php sql injection
A vulnerability was found in Sourcecodehero ERP System Project. It has been rated as critical. This issue affects some unknown processing of the file /pages/processlogin.php. The manipulation of the argument user leads to sql injection. The attack may be initiated remotely. The exploit has been...
Sourcecodehero ERP System Project SQL注入漏洞
Sourcecodehero ERP System Project is a self-hosted ERP system from Sourcecodehero. Sourcecodehero ERP System Project suffers from a SQL injection vulnerability that originates from unknown processing in /pages/processlogin.php...
PT-2022-4814 · Unknown · Sourcecodehero Erp System Project
Name of the Vulnerable Software and Affected Versions: Sourcecodehero ERP System Project affected versions not specified Description: A critical issue affects the processing of the file /pages/processlogin.php. The manipulation of the user argument leads to SQL injection. The attack may be...