Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=users§ion=cpanel&page=list request.
References
Link | Resource |
---|---|
http://www.filerun.com/changelog | Vendor Advisory |
https://feedback.filerun.com/communities/1/topics/189-critical-security-update-available | Vendor Advisory |
https://www.scanfsec.com/FileRun_2017_09_25_Blind_SQL.html | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:21:49
Updated: 2022-10-03T16:21:49
Reserved: 2022-10-03T00:00:00
Link: CVE-2018-7734
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-03-06T19:29:00.213
Modified: 2018-03-26T18:59:14.793
Link: CVE-2018-7734
JSON object: View
Redhat Information
No data.
CWE