2021-07-12 19:39:41
mitre
PUBLISHED
SQL Injection in WMS v1.0 allows remote attackers to execute arbitrary code via the "username" parameter in the component "chkuser.php".