CVE-2019-17429

Adhouma CMS through 2019-10-09 has SQL Injection via the post.php p_id parameter.

Published : 2019-10-10 12:10 Updated : 2019-10-11 20:32

7.5
CVSS Score More info
Score 7.5 / 10
7.5
Vendor Product Version URI
Adhouma Cms Project Adhouma Cms 2019-10-09 cpe:/a:adhouma_cms_project:adhouma_cms:2019-10-09
  1. Adhouma Cms Project (1) Search CVE
    1. Adhouma Cms (1) Search CVE
      1. 2019-10-09

CWE

ID Name Description Links
CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') The software constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. CVE

Reference

History of changes

Date Event
2019-10-11 20:32
2019-10-10 12:20

New CVE