2 matches found
SQL Injection Vulnerability in the Backend of Arsenal CMS (CNVD-2020-70791)
Jingxun CMS is a website construction and management system independently developed by Taizhou Jingxun Information Technology Co. A SQL injection vulnerability exists in the back-end of the CMS. An attacker can exploit the vulnerability to obtain sensitive information from the database...
SQL Injection Vulnerability in several pages of Arsenal CMS v2.1
JX CMS Jxcms is a website construction and management system independently developed by Taizhou JX Information Technology Co. A SQL injection vulnerability exists in the 'AdAction.class.php', 'AreaAction.class.php' and 'AccessAction.class.php' pages. An attacker can exploit this vulnerability to...