MidnightBSD

Advisories for realization

CVE-2019-13027 HIGH

Realization Concerto Critical Chain Planner (aka CCPM) 5.10.8071 has SQL Injection in at least in the taskupdt/taskdetails.aspx webpage via the projectname parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
realization concerto_critical_chain_planner 5.10.8071