CVE-2021-22847
Hyweb HyCMS-J1's API fail to filter POST request parameters. Remote attackers can inject SQL syntax and execute commands without privilege.
SQL Injection
SQL Injection
Vendor | Product | Version |
---|---|---|
hyweb | hycms-j1 | 𝑥 ≤ 7.4.3 |
Hyweb HyCMS-J1's API fail to filter POST request parameters. Remote attackers can inject SQL syntax and execute commands without privilege.
Vendor | Product | Version |
---|---|---|
hyweb | hycms-j1 | 𝑥 ≤ 7.4.3 |