Slims8 Akasia is a software of the Slims community in Indonesia. It is used for library resource management (e.g. books, journals, digital documents and other library materials) and administration.An SQL injection vulnerability exists in Slims8 Akasia version 8.3.1, which stems from missing SQL statements in /admin/modules/bibliography/index.php, /admin/modules/membership/member_type.php, /admin/modules/system/user_ group.php and /admin/modules/membership/index.php lack escaping and filtering of user-submitted SQL statements in the dir parameter. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
CPE | Name | Operator | Version |
---|---|---|---|
slims slims8 akasia | eq | 8.3.1 |