2 matches found
CVE-2019-10653
An issue was discovered in Hsycms V1.1. There is a SQL injection vulnerability via a /news/.html page...
CVE-2019-10653
Hsycms v1.1 contains a SQL injection vulnerability in the /news/*.html page. The root cause is unsanitized/externally entered SQL statements in the database-layer handling of news pages (per CNVD/Red Hat/CVE descriptions). Exploitation could compromise data confidentiality, integrity, and availab...