Description Contao 4.x allows SQL Injection. Fixed in Contao 4.4.39 and Contao 4.7.5. Remediation References CVE-2019-11512 Related Vulnerabilities MySQL CVE-2019-2948 Vulnerability (CVE-2019-2948) phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-9851) WordPress 2.3.1 Unauthorized Post Access Vulnerability (2.3.1) Oracle Database Server CVE-2013-5764 Vulnerability (CVE-2013-5764) Vanilla Forums Other Vulnerability (CVE-2011-3614) Severity Critical Classification CVE-2019-11512 CWE-138 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities