SQL Injection Vulnerability in SEMCMS 3.8's SEMCMS_Inquiry.php

SQL Injection Vulnerability in SEMCMS 3.8's SEMCMS_Inquiry.php

CVE-2019-11518 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

An issue was discovered in SEMCMS 3.8. SEMCMS_Inquiry.php allows AID[] SQL Injection because the class.phpmailer.php inject_check_sql protection mechanism is incomplete.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.