CVE-2017-6065 in GeniXCMSinfo

Summary

SQL injection vulnerability in inc/lib/Control/Backend/menus.control.php in GeniXCMS through 1.0.2 allows remote authenticated users to execute arbitrary SQL commands via the order parameter.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

02/17/2017

Disclosure

02/17/2017

Moderation

VulDB entry created

Entries

VDB-97114 (1)

CPE

ready

CWE

CWE-89 (Confirmed)

CVSS

7.5

EPSS

0.00344

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-6065
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-6065
CVE Details	https://www.cvedetails.com/cve/CVE-2017-6065/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!