CVE-2018-11643

2018-07-0317:00:00

mitre

www.cve.org

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

43.5%

JSON

SQL injection vulnerability in the administrative console in Dialogic PowerMedia XMS through 3.5 allows remote authenticated users to execute arbitrary SQL commands via the filterPattern parameter.

References

d3adend.org/blog/?p=1398