2 matches found
CVE-2019-13969
Metinfo 6.x allows SQL Injection via the id parameter in an admin/index.php?n=uiset=admin=index=dogettextcontent=lang=1 request...
CVE-2019-13969
CVE-2019-13969 (MetInfo 6.x) : The connected documents confirm a SQL injection in MetInfo 6.x caused by unsafely handling the id parameter in the admin/index.php?n=ui_set&m=admin&c=index&a=doget_text_content&table=lang&field=1 request. Affected software is the MetInfo CMS (PHP/MySQL) version 6.x....