Vulnerabilities > Priority Software > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-02-15 CVE-2023-23459 SQL Injection vulnerability in Priority-Software Priority 19.1.0.68/22.0
Priority Windows may allow Command Execution via SQL Injection using an unspecified method.
network
low complexity
priority-software CWE-89
critical
 9.8
9.8
2023-02-15 CVE-2023-23460 Improper Authentication vulnerability in Priority-Software Priority 19.1.0.68
Priority Web version 19.1.0.68, parameter manipulation on an unspecified end-point may allow authentication bypass.
network
low complexity
priority-software CWE-287
critical
 9.8
9.8