Lucene search
China National Vulnerability DatabaseCNVD-2022-20137HistoryMar 14, 2022 - 12:00 a.m.
Luocms SQL Injection Vulnerability
2022-03-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
luocms
sql injection
sql commands
database
security vulnerability
data theft
EPSS
0.002
Percentile
55.3%
Luocms is an article management system. A SQL injection vulnerability exists in Luocms v2.0, which stems from a lack of validation of external input SQL statements in /admin/manager/admin_mod.php. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
Related
prion
prion
Sql injection
2022-03-10 17:46:00
cve
cve
CVE-2022-24601
2022-03-10 17:46:19
nvd
nvd
CVE-2022-24601
2022-03-10 17:46:19
cvelist
cvelist
CVE-2022-24601
2022-03-09 12:13:22