Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-28870

Disclosure Date: February 10, 2021 (last updated February 22, 2025)
In InoERP 0.7.2, an unauthorized attacker can execute arbitrary code on the server side due to lack of validations in /modules/sys/form_personalization/json_fp.php.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0