CVE-2015-3933
N/A
N/A
Summary
Multiple SQL injection vulnerabilities in inc/lib/User.class.php in MetalGenix GeniXCMS before 0.0.3-patch allow remote attackers to execute arbitrary SQL commands via the (1) email parameter or (2) userid parameter to register.php.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.exploit-db.com/exploits/37363/
- https://github.com/semplon/GeniXCMS/releases/tag/v0.0.3-patch
References
- https://www.exploit-db.com/exploits/37363/
- https://github.com/semplon/GeniXCMS/releases/tag/v0.0.3-patch
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.