CVE-2019-13957

CVE-2019-13957

EPSS 1.4%

In Umbraco 7.3.8, there is SQL Injection in the backoffice/PageWApprove/PageWApproveApi/GetInpectSearch method via the nodeName parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://gist.github.com/shiham101/d1de44d1dcf2c33d401ef2f8cbb04f9f https://our.umbraco.com/download/releases/738/