The approve parameter from the AeroCMS-v0.0.1 CMS system is vulnerable to SQL injection attacks.
References
Link | Resource |
---|---|
https://github.com/rdyx0/CVE/blob/master/AeroCMS/AeroCMS-v0.0.1-SQLi/view_all_comments_update/view_all_comments_update.MD | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2022-12-13 16:15
Updated : 2022-12-15 18:43
NVD link : CVE-2022-46051
Mitre link : CVE-2022-46051
CVE.ORG link : CVE-2022-46051
JSON object : View
Products Affected
aerocms_project
- aerocms
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')