2 matches found
SQL Injection Vulnerability in cid and keyword parameters of KenCMS V1.1 Enterprise Membership Experience Edition System
KenCMS is a content management system. A SQL injection vulnerability exists in the KenCMS V1.1 Enterprise Member Experience system. The lack of filtering of the 'cid' and 'keyword' parameters allows an attacker to exploit the vulnerability to obtain sensitive information from the database...
SQL Injection Vulnerability in KenCMS V1.1 Enterprise Member Experience System end_time Parameter
KenCMS is a content management system. A SQL injection vulnerability exists in the KenCMS V1.1 Enterprise Member Experience system. The lack of filtering of the 'endtime' parameter allows an attacker to exploit the vulnerability to obtain sensitive database information...