SQL Injection Vulnerability in PbootCMS via api.php/Cms/search Order Parameter

SQL Injection Vulnerability in PbootCMS via api.php/Cms/search Order Parameter

CVE-2018-16357 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An issue was discovered in PbootCMS. There is a SQL injection via the api.php/Cms/search order parameter.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.