Security Advisory

CVE-2021-22847

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-22 08:30:20
Last updated 2024-09-16 19:04:46
Assigner twcert
State PUBLISHED

Description

Hyweb HyCMS-J1s API fail to filter POST request parameters. Remote attackers can inject SQL syntax and execute commands without privilege.

← Browse all CVEs View on cve.org ↗