Vulnerabilities > Midasolutions > High

DATE CVE VULNERABILITY TITLE RISK
2020-07-24 CVE-2020-15924 SQL Injection vulnerability in Midasolutions Eframework 2.8.0/2.8.9/2.9.0
There is a SQL Injection in Mida eFramework through 2.9.0 that leads to Information Disclosure.
network
low complexity
midasolutions CWE-89
7.5
7.5
2020-07-24 CVE-2020-15923 Path Traversal vulnerability in Midasolutions Eframework 2.8.0/2.8.9/2.9.0
Mida eFramework through 2.9.0 allows unauthenticated ../ directory traversal.
network
low complexity
midasolutions CWE-22
7.5
7.5