Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Blind SQL Injection in QuickCMS
Vulnerability Description
A Blind SQL injection vulnerability has been identified in QuickCMS. Improper neutralization of input provided by a high-privileged user into aFilesDelete allows for Blind SQL Injection attacks. The vendor was notified early about this vulnerability, but didn't respond with the details of vulnerability or vulnerable version range. Only version 6.8 was tested and confirmed as vulnerable, other versions were not tested and might also be vulnerable.
CVSS Information
N/A
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Open Solution QuickCMS SQL注入漏洞
Vulnerability Description
Open Solution QuickCMS是Open Solution开源的一个内容管理系统。 Open Solution QuickCMS存在SQL注入漏洞,该漏洞源于对高权限用户输入中和不当,可能导致盲SQL注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A