Description
Contao 4.x allows SQL Injection. Fixed in Contao 4.4.39 and Contao 4.7.5.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2019-2988 Vulnerability (CVE-2019-2988)
Oracle Application Server CVE-2007-5520 Vulnerability (CVE-2007-5520)
Oracle JRE CVE-2018-2794 Vulnerability (CVE-2018-2794)
WordPress Plugin YouTube Video Inserter Cross-Site Scripting (1.2.1.0)
WordPress Plugin WP eCommerce 'cs1' Parameter SQL Injection (3.8.6)