Vulnerability Database

Published: Nov 22, 2018
Updated: Nov 9, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2018-19435" target="_blank" rel="noopener"> CVE-2018-19435
Severity: Medium
Exploit:

309,364

Total vulnerabilities in the database

An issue was discovered in the Sales component in webERP 4.15. SalesInquiry.php has SQL Injection via the SortBy parameter.

CVSS v2:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
weberp / weberp	4.15	4.15.x

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.