Lucene search
China National Vulnerability DatabaseCNVD-2022-59020HistoryJun 17, 2022 - 12:00 a.m.
YoudianCMS SQL Injection Vulnerability (CNVD-2022-59020)
2022-06-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
0.001 Low
EPSS
Percentile
37.9%
YouDianCMS is a web CMS. SQL injection vulnerability exists in YoudianCMS v9.5.0, which originates from a missing validation of external input SQL statements in the MailSendID parameter at /App/Lib/Action/Admin/MailAction.class.php. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| 长沙友点软件科技有限公司 youdiancms v | eq | 9.5.0 |
Related
prion
prion
Sql injection
2022-06-15 17:15:00
cve
cve
CVE-2022-32300
2022-06-15 17:15:09
cvelist
cvelist
CVE-2022-32300
2022-06-15 16:21:07
nvd
nvd
CVE-2022-32300
2022-06-15 17:15:09