Skip to main content
CVE-2019-13294 CRITICAL POC THREAT Act Now

AROX School-ERP Pro has a command execution vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass PHP School Erp
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
18.8%
CVE-2019-13292 CRITICAL POC Act Now

A SQL Injection issue was discovered in webERP 4.15. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Weberp
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
6.5%
CVE-2019-13275 CRITICAL POC PATCH Act Now

An issue was discovered in the VeronaLabs wp-statistics plugin before 12.6.7 for WordPress. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

SQLi WordPress Wp Statistics
NVD GitHub
CVSS 3.0
9.8
EPSS
2.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy