2017-10-23 10:29:00 2017-10-31 23:03:33

SQL Injection exists in the E-Sic 1.0 password reset parameter (aka the cpfcnpj parameter to the /reset URI).