SQL Injection Vulnerability in Jaws Framework and Content Management System 0.4: Bypass Authentication and Arbitrary SQL Execution in controlpanel.php

SQL Injection Vulnerability in Jaws Framework and Content Management System 0.4: Bypass Authentication and Arbitrary SQL Execution in controlpanel.php

CVE-2004-2067 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in controlpanel.php in Jaws Framework and Content Management System 0.4 allows remote attackers to execute arbitrary SQL and bypass authentication via the (1) user, (2) password, or (3) crypted_password parameters.

Learn more about our Aws Audit.