2 matches found
MCMS 5.2.5 - SQL Injection
MCMS 5.2.5 contains a SQL injection vulnerability via the categoryId parameter in the file IContentDao.xml. An attacker can potentially obtain sensitive information, modify data, and/or execute unauthorized administrative operations in the context of the affected site. id: CVE-2022-23898 info:...
CVE-2022-23898
creationtimestamp| type| source ---|---|--- 2022-03-03 22:26:21+00:00| seen| https://t.me/cibsecurity/38380...