CVE-2018-10997

Etere EtereWeb before 28.1.20 has a pre-authentication blind SQL injection in the POST parameters txUserName and txPassword.
References
Link Resource
https://gist.github.com/dmblbc/14a77036a9562407194c3cf3ee3f265e Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:etere:etereweb:*:*:*:*:*:*:*:*

Information

Published : 2018-06-17 05:29

Updated : 2018-08-14 02:02


NVD link : CVE-2018-10997

Mitre link : CVE-2018-10997

Products Affected
No products.
CWE