SQL Injection Vulnerability in BlueCMS 1.6 via user_id Parameter in uploads/admin/user.php?act=edit Request

SQL Injection Vulnerability in BlueCMS 1.6 via user_id Parameter in uploads/admin/user.php?act=edit Request

CVE-2019-9594 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

BlueCMS 1.6 allows SQL Injection via the user_id parameter in an uploads/admin/user.php?act=edit request.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.