CVE-2019-8422: SQL Injection
First published: Sun Feb 17 2019(Updated: )
A SQL Injection vulnerability exists in PbootCMS v1.3.2 via the description parameter in apps\admin\controller\content\ContentController.php.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Pbootcms Pbootcms | =1.3.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-8422?
CVE-2019-8422 is a SQL Injection vulnerability found in PbootCMS v1.3.2.
How does the SQL Injection vulnerability work?
The vulnerability exists in the description parameter in the ContentController.php file of PbootCMS v1.3.2, allowing an attacker to inject malicious SQL statements.
What is the severity of CVE-2019-8422?
CVE-2019-8422 has a severity rating of 7.2 (high).
How can I fix the SQL Injection vulnerability in PbootCMS v1.3.2?
To fix the vulnerability, you should update PbootCMS to a version that has addressed the SQL Injection issue, such as a patched version or a newer release.
Where can I find more information about CVE-2019-8422?
You can find more information about CVE-2019-8422, including technical details and mitigation strategies, in the reference provided: https://github.com/wowwooo/vnotes/blob/master/PbootCMS%20SQL%20Injection%20Description.md
- collector/nvd-index
- vendor/pbootcms
- canonical/pbootcms pbootcms
- version/pbootcms pbootcms/1.3.2