CVE-2017-12908

2017-08-17T20:29:00
ID CVE-2017-12908
Type cve
Reporter cve@mitre.org
Modified 2017-08-20T12:25:00

Description

SQL injection vulnerability in takeconfirm.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the conusr parameter.