SQL Injection Vulnerability in Trape (2019-05-08) via data[2] Variable in core/db.py
CVE-2019-13489 · HIGH Severity
AV:N/AC:L/AU:N/C:P/I:P/A:P
Trape through 2019-05-08 has SQL injection via the data[2] variable in core/db.py, as demonstrated by the /bs t parameter.
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.