Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-28999

Disclosure Date: May 08, 2023 (last updated October 08, 2023)
SQL Injection vulnerability in CMS Made Simple through 2.2.15 allows remote attackers to execute arbitrary commands via the m1_sortby parameter to modules/News/function.admin_articlestab.php.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0