SQL Injection vulnerability in Vanira CMS

vendor:

Vanira CMS

by:

7.5

CVSS

HIGH

SQL Injection

CWE

Product Name: Vanira CMS

Affected Version From:

Affected Version To:

Patch Exists: No

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

SQL Injection vulnerability in Vanira CMS

Vanira CMS is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit will allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database.

Mitigation:

To mitigate this vulnerability, it is recommended to implement proper input validation and parameterized queries to prevent SQL injection attacks.

Source

SQL Injection vulnerability in Vanira CMS

Mitigation:

Exploit-DB raw data: