2 matches found
CVE-2022-45536
AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the id parameter at \admin\postcomments.php. This vulnerability allows attackers to access database information...
CVE-2022-45536
AeroCMS v0.0.1 is affected by a SQL Injection in the id parameter of the admin/post_comments.php endpoint, allowing an attacker to access database information. The CVE notes indicate remote access with low attack complexity and that privileges are required (HIGH). The vulnerability leaks confiden...