Security Advisory

CVE-2018-18619

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-11-29 22:00:00

Last updated 2024-08-05 11:16:00

Assigner mitre

State PUBLISHED

Description

internal/advanced_comment_system/admin.php in Advanced Comment System 1.0 is prone to an SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query, allowing remote attackers to execute the sqli attack via a URL in the "page" parameter. NOTE: The product is discontinued.

← Browse all CVEs View on cve.org ↗