2 matches found
CVE-2015-1372
SQL injection vulnerability in ferretCMS 1.0.4-alpha allows remote attackers to execute arbitrary SQL commands via the p parameter in an update action to admin.php...
CVE-2015-1372
CVE-2015-1372 affects ferretCMS 1.0.4-alpha. The vulnerability is a SQL injection in the update action of admin.php via the p parameter, allowing remote attackers to execute arbitrary SQL commands. Impact is described as enabling data access/ modification with partial confidentiality, integrity, ...