2019-01-17 02:00:00
mitre
PUBLISHED
A SQL injection vulnerability in NeDi before 1.7Cp3 allows any user to execute arbitrary SQL read commands via the query.php component.