VYPR
Unrated severityNVD Advisory· Published Jan 1, 2023· Updated Apr 11, 2025

CVE-2022-34324

CVE-2022-34324

Description

Multiple SQL injections in Sage XRT Business Exchange 12.4.302 allow an authenticated attacker to inject malicious data in SQL queries: Add Currencies, Payment Order, and Transfer History.

Affected products

2
  • Sage/XRT Business Exchangedescription
  • Sage/Sagellm-fuzzy
    Range: =12.4.302

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.