|
Description
|
|
Multiple vulnerabilities have been identified in w3bcms, which could be exploited by remote attackers to inject arbitrary SQL queries. These issues are caused by input validation errors in various scripts (e.g. "admin/index.php" or "includes/module/downloads/index.inc.php") when processing user-supplied data (e.g. "cms_admin" cookie parameter or "id"), which could be exploited by malicious people to conduct SQL injection attacks.
|
