Multiple SQL injection vulnerabilities in Kajian Website CMS Balitbang 3.x allow remote malicious users to execute arbitrary SQL commands via the hal parameter to (1) the data module in alumni.php; or the (2) lih_buku, (3) artikel, (4) album, or (5) berita module in index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
kajianwebsite cms balitbang 3.0 |