3 matches found
CVE-2021-43735
CmsWing 1.3.7 is affected by a SQLi vulnerability via parameter: behavior rule...
CVE-2021-43735
creationtimestamp| type| source ---|---|--- 2022-03-23 19:28:48+00:00| seen| https://t.me/cibsecurity/39426...
CVE-2021-43735
CmsWing 1.3.7 is affected by a SQL injection vulnerability in the behavior rule parameter. The root cause is insufficient escaping/ filtering of SQL data in these parameters, allowing potential unauthorized SQL execution. Impact is described as exposing or altering database data (high severity pe...