CVE-2018-25300 | XATABoost CMS 1.0.0 GET Request news.php ID sql injection (Exploit 44622 / EDB-44622)

A vulnerability has been found in XATABoost CMS 1.0.0 and classified as critical. This vulnerability affects unknown code of the file news.php of the component GET Request Handler. The manipulation of the argument ID leads to sql injection.

This vulnerability is traded as CVE-2018-25300. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More