CVE-2018-6410

An issue was discovered in Appnitro MachForm before 4.2.3. There is a download.php SQL injection via the q parameter.
References
Link Resource
https://www.machform.com/blog-machform-423-security-release/ Release Notes Vendor Advisory
https://metalamin.github.io/MachForm-not-0-day-EN/ Exploit Third Party Advisory
https://www.exploit-db.com/exploits/44804/ Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:machform:machform:4.2.3:*:*:*:*:*:*:*

Information

Published : 2018-05-26 10:29

Updated : 2021-07-01 12:25


NVD link : CVE-2018-6410

Mitre link : CVE-2018-6410

Products Affected
No products.
CWE