CVE-2019-14266

OpenSNS v6.1.0 allows SQL Injection via the index.php?s=/ucenter/Config/ uid parameter because of the getNeedQueryData function in Application/Common/Model/UserModel.class.php.
References
Configurations

Configuration 1

cpe:2.3:a:opensns:opensns:6.1.0:*:*:*:*:*:*:*

Information

Published : 2019-07-25 04:15

Updated : 2019-07-29 08:05


NVD link : CVE-2019-14266

Mitre link : CVE-2019-14266

Products Affected
No products.
CWE