3 matches found
CVE-2020-23711
SQL Injection vulnerability in NavigateCMS 2.9 via the URL encoded GET input category in navigate.php...
CVE-2020-23711
SQL Injection vulnerability in NavigateCMS 2.9 via the URL encoded GET input category in navigate.php...
CVE-2020-23711
NavigateCMS 2.9 is affected by CVE-2020-23711 due to a SQL injection in navigate.php: the URL GET input category is injectable. Documented risk is high (CVSS3.1 base 9.8, CRITICAL) with network access and no user interaction required. Exploitation details are not provided in the connected sources...