Epicor Procurement
1 CVEs
product
Monthly
SQL injection vulnerability in Epicor Procurement before 7.4 SP2 allows remote attackers to execute arbitrary SQL commands via the User field. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
SQLi
Epicor Procurement
NVD
CVSS 2.0
7.5
EPSS
0.4%
EPSS 0%
CVSS 7.5
HIGH
This Week
SQL injection vulnerability in Epicor Procurement before 7.4 SP2 allows remote attackers to execute arbitrary SQL commands via the User field. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
SQLi
Epicor Procurement
NVD