CVE-2015-5642 Information

Description

Multiple SQL injection vulnerabilities in ICZ MATCHA INVOICE before 2.5.7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Reference

http://jvn.jp/en/jp/JVN18232032/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2015-000143 http://oss.icz.co.jp/news/?p=1073