Multiple SQL injection vulnerabilities in Simple Document Management System (SDMS) 2.0-CVS and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) folder_id parameter in list.php and (2) mid parameter in a view action to messages.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cafuego simple document management system 1.1.5 |
||
cafuego simple document management system |
||
cafuego simple document management system 1.1.4 |
||
cafuego simple document management system 1.1.6 |