CommSy through 8.6.5 has SQL Injection via the cid parameter. This is fixed in 9.2.
CPE | Name | Operator | Version |
---|---|---|---|
commsy | eq | Rel-6-2-4-5 | |
commsy | eq | Rel-6-0-3 | |
commsy | eq | 8.5.1 | |
commsy | eq | 8.0.6 | |
commsy | eq | Rel-7-5-2 | |
commsy | eq | 8.1.5 | |
commsy | eq | Rel-6-0-2-1 | |
commsy | eq | Rel-6-3-3-1 | |
commsy | eq | Rel-7-1-0-2 | |
commsy | eq | 8.0.2 |