Critical severity9.8NVD Advisory· Published Dec 23, 2020· Updated Jun 17, 2026
CVE-2020-13968
CVE-2020-13968
Description
CRK Business Platform <= 2019.1 allows can inject SQL statements against the DB on any path using the 'strSessao' parameter.
Affected products
1- Range: <=2019.1
Patches
Vulnerability mechanics
References
2- github.com/r3naissance/nse/blob/master/http-vuln-cve2020-13968.nsenvdExploitThird Party Advisory
- crk.com.br/produtos/nvdProductVendor Advisory
News mentions
0No linked articles in our index yet.