ERP commit 44bd04 was discovered to contain a SQL injection vulnerability via the id parameter at /index.php/basedata/contact/delete?action=delete.Referenceshttps://gist.github.com/topsky979/648f2cd4f5e58560cbc9308d06e2f876
