CVE-2018-13850

The "Firebase Cloud Messaging (FCM) + Advance Admin Panel" component supporting Firebase Push Notification on iOS (through 2017-10-26) allows SQL injection via the /advance_push/public/login username parameter.
References
Link Resource
https://cxsecurity.com/issue/WLB-2018070096 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:icanstudioz:firebase_push_notification_on_ios_/_fcm_+_advance_admin_panel:*:*:*:*:*:*:*:*

Information

Published : 2018-07-10 06:29

Updated : 2018-09-07 04:15


NVD link : CVE-2018-13850

Mitre link : CVE-2018-13850

Products Affected
No products.
CWE