SQL Injection Vulnerability in GeniXCMS 1.0.2: Remote Code Execution via menus.control.php

SQL Injection Vulnerability in GeniXCMS 1.0.2: Remote Code Execution via menus.control.php

CVE-2017-6065 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

SQL injection vulnerability in inc/lib/Control/Backend/menus.control.php in GeniXCMS through 1.0.2 allows remote authenticated users to execute arbitrary SQL commands via the order parameter.

Learn more about our Cms Pen Testing.