Remote SQL Injection Vulnerability in Afian FileRun (before 2018.02.13) via search parameter in /?module=users&section=cpanel&page=list request

Remote SQL Injection Vulnerability in Afian FileRun (before 2018.02.13) via search parameter in /?module=users&section=cpanel&page=list request

CVE-2018-7734 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=users&section=cpanel&page=list request.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.