CVE-2015-5617

CVE-2015-5617

EPSS 2.0%

SQL injection vulnerability in pub/m_pending_news/delete_pending_news.jsp in Enorth Webpublisher CMS allows remote attackers to execute arbitrary SQL commands via the cbNewsId parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://packetstormsecurity.com/files/133082/Enorth-Webpublisher-CMS-SQL-Injection.html http://seclists.org/fulldisclosure/2015/Aug/55