SQL Injection in ImpressCMS 1.4.3 and previous versions allows remote malicious users to inject into the code in unintended way, this allows an malicious user to read and modify the sensitive information from the database used by the application. If misconfigured, an attacker can even upload a malicious web shell to compromise the entire system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
impresscms impresscms |