SQL Injection Vulnerability in Biltay Technology Procost (Procost: before 1390)

CVE-2023-5046 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Biltay Technology Procost allows SQL Injection, Command Line Execution through SQL Injection.This issue affects Procost: before 1390.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.