VYPR
Critical severity9.8NVD Advisory· Published Jun 24, 2017· Updated Jun 17, 2026

CVE-2017-9848

CVE-2017-9848

Description

SQL injection vulnerability in C_InfoService.asmx in WebServices in Easysite 7.0 could allow remote attackers to execute arbitrary SQL commands via an XML document containing a crafted ArticleIDs element within a GetArticleHitsArray element.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.