CVE-2018-25425 - Exploits & Severity
Source: Feedly
Published:
<p>Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') (CWE-89)</p> <p>Yot CMS 3.3.1 contains an SQL injection vulnerability in the aid and cid parameters of index.php. Unauthenticated attackers can inject malicious SQL code through GET requests to extract database i