GHSA-4pqp-69m3-f8pp, CVE-2023-24788
packagist/notrinos/notrinos-erp
NotrinosERP vulnerable to SQL Injection
RESERVED NotrinosERP v0.7 was discovered to contain a SQL injection vulnerability via the OrderNumber parameter at /NotrinosERP/sales/customer_delivery.php.
All versions up to 0.7
Unfortunately, there is no solution available yet.
2023-03-24
source |