Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=metadata§ion=cpanel&page=list_filetypes request.
CPE | Name | Operator | Version |
---|---|---|---|
filerun | le | 2017.09.25 |