CVE-2021-3025
CVE-2021-3025
Invision Community IPS Community Suite before 4.5.4.2 allows SQL Injection via the Downloads REST API (the sortDir parameter in a sortBy=popular action to the GETindex() method in applications/downloads/api/files.php).
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →