VYPR
Unrated severityNVD Advisory· Published Jan 21, 2014· Updated Jun 17, 2026

CVE-2014-1619

CVE-2014-1619

Description

Multiple SQL injection vulnerabilities in Cubic CMS 5.1.1, 5.1.2, and 5.2 allow remote attackers to execute arbitrary SQL commands via the (1) resource_id or (2) version_id parameter to recursos/agent.php or (3) login or (4) pass parameter to login.usuario.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:cubicfactory:cubic_cms:5.1.1:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:cubicfactory:cubic_cms:5.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cubicfactory:cubic_cms:5.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:cubicfactory:cubic_cms:5.2:*:*:*:*:*:*:*
    • (no CPE)range: =5.1.1, 5.1.2, or 5.2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.