CVE-2018-14956

CVE-2018-14956

EPSS 2.6%

CMS ISWEB 3.5.3 is vulnerable to multiple SQL injection flaws. An attacker can inject malicious queries into the application and obtain sensitive information.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://packetstormsecurity.com/files/149571/CMS-ISWEB-3.5.3-SQL-Injection.html https://cxsecurity.com/issue/WLB-2018090249 https://imgur.com/a/buXJJKC