Victor CMS v1.0 was discovered to contain a SQL injection vulnerability in the component admin/posts.php?source=add_post. This vulnerability can be exploited through a crafted POST request via the post_title parameter.
References
Link | Resource |
---|---|
https://github.com/Nguyen-Trung-Kien/CVE | Third Party Advisory |
https://github.com/Nguyen-Trung-Kien/CVE/blob/main/CVE-2021-46458/CVE-2021-46458.pdf | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-01-31T15:23:15
Updated: 2022-01-31T15:23:15
Reserved: 2022-01-24T00:00:00
Link: CVE-2021-46458
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-01-31T16:15:10.017
Modified: 2022-02-19T04:13:42.903
Link: CVE-2021-46458
JSON object: View
Redhat Information
No data.
CWE