漏洞类别:Local
漏洞等级: 
漏洞信息
Moxa SoftCMS is a central management software that manages large scale surveillance systems.
Moxa SoftCMS does not properly sanitize input fields, allowing an attacker to access the product by specially crafting the input.
Affected Versions:
SoftCMS versions prior to version 1.5
漏洞危害
Successful exploitation allows an unauthenticated, remote attacker to manipulate SQL queries by injecting arbitrary SQL code or further exploit latent vulnerabilities in the underlying database.
解决方案
Customers are advised to install Moxa SoftCMS 1.5 or later versions to remediate these vulnerabilities.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论