SQL Injection Vulnerability in Horizon QCMS 4.0 and Earlier: Remote Code Execution via download.php

SQL Injection Vulnerability in Horizon QCMS 4.0 and Earlier: Remote Code Execution via download.php

CVE-2013-7139 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in download.php in Horizon Quick Content Management System (QCMS) 4.0 and earlier allows remote to execute arbitrary SQL commands via the category parameter.

Learn more about our Cms Pen Testing.