Description
SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basic_title parameter.
Remediation
References
https://github.com/ming-soft/MCMS/issues/27
Related Vulnerabilities
CVE-2023-36469 Vulnerability in maven package org.xwiki.platform:xwiki-platform-notifications-ui
CVE-2022-1291 Vulnerability in maven package org.webjars.bower:tableexport.jquery.plugin
CVE-2019-10758 Vulnerability in npm package mongo-express
CVE-2022-21213 Vulnerability in npm package mout
CVE-2018-20677 Vulnerability in maven package org.webjars.bower:bootstrap-sass