Digital Craft AtomCMS Arbitrary File Upload and SQL Injection Vulnerabilities

Digital Craft AtomCMS is prone to file upload and sql injection vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2014-4852

SQL injection vulnerability in admin/uploads.php in The Digital Craft AtomCMS, possibly 2.0, allows remote attackers to execute arbitrary SQL commands via the id parameter...

Sql injection

SQL injection vulnerability in admin/uploads.php in The Digital Craft AtomCMS, possibly 2.0, allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2014-4852

CVE-2014-4852 describes an SQL injection in The Digital Craft AtomCMS, in the file admin/uploads.php (likely around version 2.0). The vulnerability allows remote attackers to manipulate the database by supplying an arbitrary SQL command via the id parameter, as documented in multiple feeds (NVD, ...

CVE-2014-4852

SQL injection vulnerability in admin/uploads.php in The Digital Craft AtomCMS, possibly 2.0, allows remote attackers to execute arbitrary SQL commands via the id parameter...