CVE-2017-10842

Description

SQL injection vulnerability in the baserCMS 3.0.14 and earlier, 4.0.5 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected products

• baserCMS Users Community / baserCMS3.0.14 and earlier – 3.0.14 and earlier
• baserCMS Users Community / baserCMS4.0.5 and earlier – 4.0.5 and earlier

References

• MISChttps://basercms.net/security/JVN78151490
• MISChttp://jvn.jp/en/jp/JVN78151490/index.html