CVE-2018-9924

2018-04-10T06:29:00
ID CVE-2018-9924
Type cve
Reporter cve@mitre.org
Modified 2018-04-17T16:59:00

Description

An issue was discovered in idreamsoft iCMS through 7.0.7. SQL injection exists via the pid array parameter in an admincp.php?app=tag&do=save&frame=iPHP request.