CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-13447

An issue was discovered in Sertek Xpare 3.67. The login form does not sanitize input data. Because of this, a malicious agent could access the backend database via SQL injection.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.6%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

https://cyberoo.com/2019/07/16/cyberoo-identifica-vulnerabilita-0day/
https://cyberoo.com/2019/07/16/cyberoo-identifica-vulnerabilita-0day/

Products affected by CVE-2019-13447

Sertek » Xpare » Version: 3.67

cpe:2.3:a:sertek:xpare:3.67

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-13447

Products

Pricing

Contact Us