PT-2025-9922 · Unknown · Finder Erp/Crm
Huseyin Uzum
·
Published
2025-03-06
·
Updated
2025-03-07
·
CVE-2024-12146
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Finder ERP/CRM (New System) versions prior to 18.12.2024
Description
The issue is related to improper validation of syntactic correctness of input, allowing SQL Injection.
Recommendations
For versions prior to 18.12.2024, update to a version released after 18.12.2024 to resolve the issue.
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Finder Erp/Crm