$SQL Injection Vulnerability in HongCMS 3.0.0 via admin\controllers\database.php$

SQL Injection Vulnerability in HongCMS 3.0.0 via admin\controllers\database.php

CVE-2018-12912 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

An issue wan discovered in admin\controllers\database.php in HongCMS 3.0.0. There is a SQL Injection vulnerability via an admin/index.php/database/operate?dbaction=emptytable&tablename= URI.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.