5 matches found
CVE-2022-3878
A vulnerability classified as critical has been found in Maxon ERP. This affects an unknown part of the file /index.php/purchaseorder/browsedata. The manipulation of the argument tbsearch leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
Sql injection
A vulnerability classified as critical has been found in Maxon ERP. This affects an unknown part of the file /index.php/purchaseorder/browsedata. The manipulation of the argument tbsearch leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
CVE-2022-3878 Maxon ERP browse_data sql injection
A vulnerability classified as critical has been found in Maxon ERP. This affects an unknown part of the file /index.php/purchaseorder/browsedata. The manipulation of the argument tbsearch leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
CVE-2022-3878 Maxon ERP browse_data sql injection
A vulnerability classified as critical has been found in Maxon ERP. This affects an unknown part of the file /index.php/purchaseorder/browsedata. The manipulation of the argument tbsearch leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
CVE-2022-3878
CVE-2022-3878 : Maxon ERP is affected by a SQL injection in the file path /index.php/purchase_order/browse_data, triggered by manipulating the tb_search argument. Multiple sources describe this as a remote, high-severity issue with a CVSS 3.1 base score of 9.8 (critical, network access, no authen...