CVE-2018-14956

CVE-2018-14956

EPSS 2.6%

CMS ISWEB 3.5.3 is vulnerable to multiple SQL injection flaws. An attacker can inject malicious queries into the application and obtain sensitive information.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/149571/CMS-ISWEB-3.5.3-SQL-Injection.html https://cxsecurity.com/issue/WLB-2018090249 https://imgur.com/a/buXJJKC