CVE-2019-11622
30.04.2019, 20:29
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user/modulecategoryRequest.php. A remote background administrator privilege user (or a user with permission to manage modulecategory) could exploit the vulnerability to obtain database sensitive information via modulecategory_edit_titre.
| Vendor | Product | Version |
|---|---|---|
| doorgets | doorgets_cms | 7.0 |
𝑥
= Vulnerable software versions