2 matches found
CVE-2019-5488
EARCLINK ESPCMS-P8 has SQL injection in the installpack/index.php?ac=Member&at=verifyAccount verifykey parameter. installpack/espcmspublic/espcmsdb.php may allow retrieving sensitive information from the ESPCMS database...
CVE-2019-5488
Affected product : EARCLINK ESPCMS-P8. The vulnerability is a SQL injection in the ESPCMS components: install_pack/index.php?ac=Member&at=verifyAccount (verify_key parameter) and install_pack/espcms_public/espcms_db.php, which may allow retrieving sensitive information from the ESPCMS database. T...