SQL Injection in MetInfo 6.1.0 via doexport() in feedback_admin.class.php

SQL Injection in MetInfo 6.1.0 via doexport() in feedback_admin.class.php

CVE-2018-17129 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

MetInfo 6.1.0 has SQL injection in doexport() in app/system/feedback/admin/feedback_admin.class.php via the class1 field.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.