Vulnerabilities

CVE-2018-14472

by Fred · 20/07/2018

An issue was discovered in WUZHI CMS 4.1.0. The vulnerable file is coreframe/app/order/admin/goods.php. The $keywords parameter is taken directly into execution without any filtering, leading to SQL injection.

Date published : 2018-07-20

https://github.com/wuzhicms/wuzhicms/issues/144

Similar

Tags: Cybersecurity Alert