A SQL injection vulnerability in Cybrosys Techno Solutions Website Blog Search (aka website_search_blog) v. 13.0 through 13.0.1.0.1 allows a remote attacker to execute arbitrary code and to gain privileges via the name parameter in controllers/main.py component.
CPE | Name | Operator | Version |
---|---|---|---|
website_blog_search | ge | 13.0 | |
website_blog_search | le | 13.0.1.0.1 |