CVE-2018-14440

2018-07-2000:00:00

mitre

www.cve.org

cve-2018-14440

sql injection

notice parameter

AI Score

9.9

Confidence

High

EPSS

0.001

Percentile

50.0%

JSON

An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. SQL injection exists via the admin/noticeManageAction_queryNotice.action noticeInfo parameter.

References

github.com/cckevincyh/CompanyWebsite/issues/3