2 matches found
CVE-2022-45331
AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the pid parameter at \post.php. This vulnerability allows attackers to access database information...
CVE-2022-45331
AeroCMS v0.0.1 is affected by CVE-2022-45331 due to a SQL Injection flaw in the p_id parameter of post.php. The root cause is unauthenticated input in the API endpoint allowing access to database information. Documented impact is disclosure of database data; exploitation is not described in detai...