CVE-2021-46385

https://gitee.com/mingSoft/MCMS MCMS <=5.2.5 is affected by: SQL Injection. The impact is: obtain sensitive information (remote). The component is: net.mingsoft.mdiy.action.FormDataAction#queryData. The attack vector is: 0 or sleep(3). ¶¶ MCMS has a sql injection vulnerability through which attacker can get sensitive information from the database.
References
Link Resource
https://gitee.com/mingSoft/MCMS/issues/I4QZ1K Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:mingsoft:mcms:*:*:*:*:*:*:*:*

Information

Published : 2022-01-26 07:15

Updated : 2022-02-04 03:43


NVD link : CVE-2021-46385

Mitre link : CVE-2021-46385

Products Affected
No products.
CWE