Description
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basic_title parameter.
Remediation
References
https://github.com/ming-soft/MCMS/issues/27
Related Vulnerabilities
CVE-2014-1216 Vulnerability in maven package org.fitnesse:fitnesse
CVE-2022-36033 Vulnerability in maven package org.jsoup:jsoup
CVE-2016-8744 Vulnerability in maven package org.apache.brooklyn:brooklyn
CVE-2023-36665 Vulnerability in npm package protobufjs
CVE-2017-18354 Vulnerability in npm package rendertron-middleware