First published: Mon Jun 28 2021(Updated: )
SQL Injection vulnerability in NavigateCMS 2.9 via the URL encoded GET input category in navigate.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Naviwebs Navigate CMS | =2.9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-23711 is a SQL Injection vulnerability in NavigateCMS 2.9.
CVE-2020-23711 occurs through the URL encoded GET input category in the navigate.php file.
CVE-2020-23711 has a severity level of critical, with a CVSS score of 9.8.
NavigateCMS 2.9 is affected by CVE-2020-23711.
To fix CVE-2020-23711, you should update NavigateCMS to a version that is not affected by this vulnerability.