CVE-2019-13447

Name of the Vulnerable Software and Affected Versions Sertek Xpare version 3.67

Description An issue was discovered where the login form does not sanitize input data, allowing a malicious agent to potentially access the backend database via SQL injection.

Recommendations For Sertek Xpare version 3.67, consider implementing input sanitization for the login form to prevent SQL injection attacks. As a temporary workaround, restrict access to the login form and backend database to minimize the risk of exploitation.