2 matches found
CVE-2018-7783
CVE-2018-7783 affects Schneider Electric SoMachine Basic prior to v1.6 SP1. The vulnerability is an XML External Entity (XXE) flaw triggered by unsanitized input to the XML parser, enabling disclosure/retrieval of arbitrary data on the affected node via an out-of-band (OOB) attack. Affected produ...
BlueCMS v1. 6 sp1 $_SERVER injection vulnerability-vulnerability warning-the black bar safety net
Affected version: v1. 6 sp1 Vulnerability description: BlueCMS is a place to classified information portal dedicated CMS system. Procedures in using the getipfunction to get the Client ip when not strictly filter the data, resulting in sql injection vulnerability. //comment.php $sql = "INSERT INT...