Description
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basic_title parameter.
Remediation
References
https://github.com/ming-soft/MCMS/issues/27
Related Vulnerabilities
CVE-2019-13127 Vulnerability in maven package org.webjars.bowergithub.jgraph:mxgraph
CVE-2021-3815 Vulnerability in npm package @fabiocaccamo/utils.js
CVE-2021-23639 Vulnerability in npm package md-to-pdf
CVE-2020-7662 Vulnerability in npm package websocket-extensions
CVE-2020-7639 Vulnerability in npm package eivindfjeldstad-dot