SQL Injection Vulnerability in Ovidentia CMS 6.x index.php id Parameter

SQL Injection Vulnerability in Ovidentia CMS 6.x index.php id Parameter

CVE-2021-29343 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Ovidentia CMS 6.x contains a SQL injection vulnerability in the "id" parameter of index.php. The "checkbox" property into "text" data can be extracted and displayed in the text region or in source code.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.