SQL injection vulnerability in download.php in WebPortal CMS 0.7.4 and earlier allows remote attackers to execute arbitrary SQL commands via the aid parameter.
CPE | Name | Operator | Version |
---|---|---|---|
webportal_cms | eq | 0.7.3 | |
webportal_cms | le | 0.7.4 | |
webportal_cms | eq | 0.6.0 | |
webportal_cms | eq | 0.6.0-beta |