EPSS
Percentile
30.3%
forkcms/forkcms is vulnerable to SQL Injection attacks. The vulnerability exists in deleteData function in Model.php due to lack of validations which allows a malicious user to inject and execute arbitrary SQL queries on the server.
deleteData
Model.php
github.com/advisories/GHSA-q863-cchm-c6c6
github.com/forkcms/forkcms/commit/7a12046a67ae5d8cf04face3ee75e55f03a1a608
github.com/forkcms/forkcms/pull/3495
huntr.dev/bounties/841503dd-311c-470a-a8ec-d4579b3274eb
huntr.dev/bounties/841503dd-311c-470a-a8ec-d4579b3274eb/