2 matches found
CVE-2018-19559
CuppaCMS before 2018-11-12 has SQL Injection in administrator/classes/ajax/functions.php via the referenceid parameter...
CVE-2018-19559
CVE-2018-19559 affects CuppaCMS prior to 2018-11-12. The vulnerability is a SQL injection in the file administrator/classes/ajax/functions.php via the reference_id parameter, allowing a remote attacker to execute arbitrary SQL commands. CVSS metrics from NVD indicate a high to critical impact: CV...