2 matches found
CVE-2019-13447
CVE-2019-13447 affects Sertek Xpare 3.67. The login form does not sanitize input data, enabling a SQL injection vulnerability that could allow a malicious actor to access the backend database. Exploitation details and a formal remediation are not provided in the connected documents.
CVE-2019-13448
CVE-2019-13448 affects Sertek Xpare 3.67. The vulnerability arises from the login form not sanitizing input, allowing an attacker to craft an XSS payload that could be delivered to the product’s clients. The primary affected component is the login/input handling in Sertek Xpare 3.67. The connecte...