Description
Mingsoft MCMS 5.2.8 was discovered to contain a SQL injection vulnerability in /mdiy/page/verify URI via fieldName parameter.
Remediation
References
https://github.com/ming-soft/MCMS/issues/97
Related Vulnerabilities
CVE-2020-7793 Vulnerability in maven package org.webjars.bowergithub.faisalman:ua-parser-js
CVE-2021-23648 Vulnerability in npm package @braintree/sanitize-url
CVE-2020-7661 Vulnerability in maven package org.webjars.npm:url-regex
CVE-2022-1929 Vulnerability in npm package devcert
CVE-2022-35961 Vulnerability in npm package @openzeppelin/contracts-upgradeable