2 matches found
Exploit for SQL Injection in S-Cms
Scms – SQL Injection exploit.py is a PoC for the CVE-2019-...
CVE-2019-10708
CVE-2019-10708 affects S-CMS PHP v1.0. The vulnerability is a SQL injection in the parameter 4/js/scms.php?action=unlike, due to insufficient input validation, allowing an attacker to inject SQL statements. The NVD/NVD-derived metrics indicate high/critical risk (CVSS v2: 7.5; CVSS v3: 9.8). Publ...