CVE-2016-5792

SQL injection vulnerability in Moxa SoftCMS before 1.5 allows remote attackers to execute arbitrary SQL commands via unspecified fields.
Configurations

Configuration 1 (hide)

cpe:2.3:a:moxa:softcms:*:*:*:*:*:*:*:*

History

21 Nov 2024, 02:55

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/92262 - () http://www.securityfocus.com/bid/92262 -
References () http://www.zerodayinitiative.com/advisories/ZDI-16-463 - () http://www.zerodayinitiative.com/advisories/ZDI-16-463 -
References () https://ics-cert.us-cert.gov/advisories/ICSA-16-215-01 - Third Party Advisory, US Government Resource () https://ics-cert.us-cert.gov/advisories/ICSA-16-215-01 - Third Party Advisory, US Government Resource

Information

Published : 2016-08-08 00:59

Updated : 2024-11-21 02:55


NVD link : CVE-2016-5792

Mitre link : CVE-2016-5792

CVE.ORG link : CVE-2016-5792


JSON object : View

Products Affected

moxa

  • softcms
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')