CVE-2017-5574

CVE-2017-5574

EPSS 2.4%

SQL injection vulnerability in register.php in GeniXCMS before 1.0.0 allows unauthenticated users to execute arbitrary SQL commands via the activation parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/semplon/GeniXCMS/issues/69 https://github.com/semplon/GeniXCMS/releases/tag/v1.0.0 http://www.securityfocus.com/bid/95701