CVE-2014-8506

Multiple SQL injection vulnerabilities in Etiko CMS allow remote attackers to execute arbitrary SQL commands via the (1) page_id parameter to loja/index.php or (2) article_id parameter to index.php.
Configurations

Configuration 1 (hide)

cpe:2.3:a:etiko:etiko_cms:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-10-28 14:55

Updated : 2024-02-28 12:20


NVD link : CVE-2014-8506

Mitre link : CVE-2014-8506

CVE.ORG link : CVE-2014-8506


JSON object : View

Products Affected

etiko

  • etiko_cms
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')