A vulnerability was found in ERP 44bd04. It has been classified as critical. Affected is an unknown function of the file /index.php/basedata/inventory/delete?action=delete. The manipulation of the argument id leads to sql injection.
This vulnerability is traded as CVE-2024-42564. It is possible to launch the attack remotely. Furthermore, there is an exploit available.