3 matches found
CVE-2017-14076
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the id parameter to linksmanage.php in an editlink action...
CVE-2017-14076
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the id parameter to linksmanage.php in an editlink action...
CVE-2017-14076
Summary of CVE-2017-14076 : A SQL injection exists in NexusPHP 1.5.beta5.20120707, exploitable via the id parameter to linksmanage.php in the editlink action. Affected component: NexusPHP (PHP-based resource sharing software). Root cause: unsafely concatenated user input in the linksmanage.php ed...