Vulnerabilities > Sage > Sage XRT Business Exchange > High

DATE CVE VULNERABILITY TITLE RISK
2023-01-01 CVE-2022-34324 SQL Injection vulnerability in Sage XRT Business Exchange 12.4.302
Multiple SQL injections in Sage XRT Business Exchange 12.4.302 allow an authenticated attacker to inject malicious data in SQL queries: Add Currencies, Payment Order, and Transfer History.
network
low complexity
sage CWE-89
8.8
8.8