SQL Injection Vulnerability in Horizon QCMS 4.0 and Earlier: Remote Code Execution via download.php
CVE-2013-7139 · HIGH Severity
AV:N/AC:L/AU:N/C:P/I:P/A:P
SQL injection vulnerability in download.php in Horizon Quick Content Management System (QCMS) 4.0 and earlier allows remote to execute arbitrary SQL commands via the category parameter.
Learn more about our Cms Pen Testing.