Seren PORSUK

1 exploit Active since Jul 2018
CVE-2018-12977 EXPLOITDB HIGH text WRITEUP
SoftExpert Excellence Suite 2.0 - Authenticated SQL Injection via cddocument Parameter
A SQL injection vulnerability in the SoftExpert (SE) Excellence Suite 2.0 allows remote authenticated users to perform SQL heuristics by pulling information from the database with the "cddocument" parameter in the "Downloading Electronic Documents" section.
CVSS 8.8