Security Advisory

CVE-2016-10731

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-10-28 03:00:00

Last updated 2024-08-06 03:30:20

Assigner mitre

State PUBLISHED

Description

ProjectSend (formerly cFTP) r582 allows SQL injection via manage-files.php with the request parameter status, manage-files.php with the request parameter files, clients.php with the request parameter selected_clients, clients.php with the request parameter status, process-zip-download.php with the request parameter file, or home-log.php with the request parameter action.

← Browse all CVEs View on cve.org ↗