First published: Wed Oct 17 2018(Updated: )
apps\admin\controller\content\SingleController.php in PbootCMS before V1.3.0 build 2018-11-12 has SQL Injection, as demonstrated by the POST data to the admin.php/Single/mod/mcode/1/id/3 URI.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Pbootcms Pbootcms | <1.3.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this PbootCMS vulnerability is CVE-2018-18450.
The severity of CVE-2018-18450 is critical with a severity value of 9.8.
CVE-2018-18450 affects PbootCMS versions up to and including 1.3.0.
CVE-2018-18450 is an SQL Injection vulnerability in apps\admin\controller\content\SingleController.php in PbootCMS before V1.3.0 build 2018-11-12.
To fix the CVE-2018-18450 vulnerability, you should update PbootCMS to version 1.3.0 or later.