Description
Multiple SQL injection vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 1.4 allow remote authenticated users to execute arbitrary SQL commands via the (1) address parameter to addressbook.php, the (2) getnews parameter to familynews.php, and the (3) poll_id parameter to home.php in a results action.
Remediation
References
Related Vulnerabilities
WordPress Plugin JobSearch WP Job Board Cross-Site Scripting (1.5.1)
WordPress Plugin Ultimate Addons for Elementor Security Bypass (1.24.1)
MySQL CVE-2021-2308 Vulnerability (CVE-2021-2308)
Oracle Database Server CVE-2007-5531 Vulnerability (CVE-2007-5531)
Apache HTTP Server Resource Management Errors Vulnerability (CVE-2016-8740)