Security Advisory

CVE-2021-41654

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-06-16 11:22:05

Last updated 2024-08-04 03:15:29

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerabilities exist in Wuzhicms v4.1.0 which allows attackers to execute arbitrary SQL commands via the $keyValue parameter in /coreframe/app/pay/admin/index.php

← Browse all CVEs View on cve.org ↗