Vulnerabilities > Medicalexpo

DATE CVE VULNERABILITY TITLE RISK
2021-01-11 CVE-2021-3118 SQL Injection vulnerability in Medicalexpo ECS Imaging 6.21.3/6.21.5
EVOLUCARE ECSIMAGING (aka ECS Imaging) through 6.21.5 has multiple SQL Injection issues in the login form and the password-forgotten form (such as /req_password_user.php?email=).
network
low complexity
medicalexpo CWE-89
critical
9.8