2 matches found
CVE-2018-14956
CVE-2018-14956 affects CMS ISWEB 3.5.3. The vulnerability is SQL injection in the web application, enabling a remote attacker to inject malicious queries and obtain sensitive information. The PacketStorm page provides a PoC and details indicating an attacker could access the entire database and p...
CMS ISWEB 3.5.3 SQL Injection
Description CMS ISWEB 3.5.3 is vulnerable to multiple SQL injection flaws. An attacker can inject malicious queries into the application and obtain sensitive information. ------------------------------------------ Additional Information PoC Prints: https://imgur.com/a/buXJJKC ?id=1'...