2 matches found
CVE-2010-4152
CVE-2010-4152 affects 4Site CMS 2.6 and earlier, with a concrete SQL injection vulnerability in the Catalog module. The issue is triggered via the cat parameter in catalog/index.shtml, and HTB reports additional vulnerable vectors in other modules (portfolio/index.shtml with i parameter, faq/inde...
SQL Injection Vulnerabilities in 4site CMS
High-Tech Bridge SA Security Research Lab has discovered three vulnerabilities in 4site CMS which could be exploited to execute arbitrary SQL commands in applications database. 1 SQL injection vulnerabilities in 4site CMS: CVE-2010-4152 1.1 The vulnerability exists due to insufficient validation ...