CVE-2017-10842

描述

SQL injection vulnerability in the baserCMS 3.0.14 and earlier, 4.0.5 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

受影響套件(1)

• Packagist/baserproject/basercmsfrom 0, < 3.0.15

CVSS 分數

參考連結(4)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2017-10842
• WEBhttp://jvn.jp/en/jp/JVN78151490/index.html
• WEBhttps://basercms.net/security/JVN78151490
• WEBhttps://github.com/baserproject/basercms