vendor:
SaturnCMS
by:
Hussin X
8.8
CVSS
HIGH
Blind SQL Injection
89
CWE
Product Name: SaturnCMS
Affected Version From: Prior to 1.2.1
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: a:saturncms:saturncms
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008
SaturnCMS (view) Blind SQL Injection Vulnerability
SaturnCMS is prone to a blind SQL injection vulnerability. An attacker can exploit this issue to manipulate SQL queries and gain access to sensitive information in the back-end database. This issue affects versions prior to SaturnCMS 1.2.1.
Mitigation:
Upgrade to SaturnCMS version 1.2.1 or later.