SQL Injection Vulnerability in Category.php in Microweber CMS 0.95 before 20141209

SQL Injection Vulnerability in Category.php in Microweber CMS 0.95 before 20141209

CVE-2014-9464 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in Category.php in Microweber CMS 0.95 before 20141209 allows remote attackers to execute arbitrary SQL commands via the category parameter when displaying a category, related to the $parent_id variable.

Learn more about our Web App Pen Testing.