SQL Injection Vulnerability in Icy Phoenix 2.2.0.105 via admin_kb_art.php and admin_jr_admin.php

CVE-2018-5697 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

Icy Phoenix 2.2.0.105 allows SQL injection via an unapprove request to admin_kb_art.php or the order parameter to admin_jr_admin.php, related to functions_kb.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.