SQL Injection Vulnerability in Icy Phoenix 2.2.0.105 via admin_kb_art.php and admin_jr_admin.php
CVE-2018-5697 · MEDIUM Severity
AV:N/AC:L/AU:S/C:P/I:P/A:P
Icy Phoenix 2.2.0.105 allows SQL injection via an unapprove request to admin_kb_art.php or the order parameter to admin_jr_admin.php, related to functions_kb.php.
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.