CVE-2019-16894 admin 5년 ago CVE-2019-16894 download.php in inoERP 4.15 allows SQL injection through insecure deserialization. Source: CVE-2019-16894