Critical severity9.8NVD Advisory· Published Dec 2, 2019· Updated Jun 17, 2026
CVE-2019-19245
CVE-2019-19245
Description
NAPC Xinet Elegant 6 Asset Library 6.1.655 allows Pre-Authentication SQL Injection via the /elegant6/login LoginForm[username] field when double quotes are used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- NAPC/Xinet Elegant 6 Asset Librarydescription
- Range: 6.1.655
Patches
Vulnerability mechanics
References
3- hyp3rlinx.altervista.orgnvdExploitThird Party Advisory
- packetstormsecurity.com/files/155505/Xinet-Elegant-6-Asset-Library-Web-Interface-6.1.655-SQL-Injection.htmlnvdExploitThird Party AdvisoryVDB Entry
- seclists.org/fulldisclosure/2025/Feb/0nvd
News mentions
0No linked articles in our index yet.