2025-09-04 11:06:38
INCIBE
PUBLISHED
An SQL injection vulnerability has been found in appRain CMF 4.0.5. This vulnerability allows an attacker to retrieve, create, update, and delete the database, through the data%5BPage%5D%5Bname%5D parameter in /apprain/page/manage-dynamic-pages/create.