Sql injection

A vulnerability was found in XpressEngine up to 1.4.4. It has been rated as critical. This issue affects some unknown processing of the component Update Query Handler. The manipulation leads to sql injection. Upgrading to version 1.4.5 is able to address this issue. The patch is named...

CVE-2011-10003 XpressEngine Update Query sql injection

A vulnerability was found in XpressEngine up to 1.4.4. It has been rated as critical. This issue affects some unknown processing of the component Update Query Handler. The manipulation leads to sql injection. Upgrading to version 1.4.5 is able to address this issue. The patch is named...

CVE-2011-10003

CVE-2011-10003 affects XpressEngine up to version 1.4.4. The issue arises from an unknown processing flaw in the Update Query Handler that enables a SQL injection. The vulnerability is fixed by upgrading to version 1.4.5, with the patch identified as c6e94449f21256d6362450b29c7847305e756ad5. Seve...

CVE-2011-10003 XpressEngine Update Query sql injection

A vulnerability was found in XpressEngine up to 1.4.4. It has been rated as critical. This issue affects some unknown processing of the component Update Query Handler. The manipulation leads to sql injection. Upgrading to version 1.4.5 is able to address this issue. The patch is named...

PT-2023-9915 · Unknown · Xpressengine

Name of the Vulnerable Software and Affected Versions: XpressEngine versions up to 1.4.4 Description: A critical issue affects the Update Query Handler component, leading to sql injection. The estimated number of potentially affected devices worldwide is not available. There is no information abo...

XpressEngine SQL注入漏洞

XpressEngine is a CMS Content Management System that allows anyone to publish content easily, conveniently and freely. A SQL injection vulnerability exists in XpressEngine versions prior to 1.4.5, which stems from a problem with certain unknown processing in the component Update Query Handler, an...