2 matches found
CVE-2018-18084
CVE-2018-18084 affects DuomiCMS 3.0. A SQL injection exists in the ajax.php file, demonstrated by the uid parameter. The issue is rated with CVSS v3.1: base score 9.8 (CRITICAL), vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, indicating network attack needs no authentication or user interac...
jQuery Suspicious URL Redirection (CVE-2018-18084)
A suspicious URL redirection to a possibly malicious jQuery domain has been encountered. By injecting JavaScript code, an attacker may redirect the user to an attacker-controlled website...