Critical severity9.8NVD Advisory· Published Sep 4, 2018· Updated Jun 17, 2026
CVE-2018-16432
CVE-2018-16432
Description
BlueCMS 1.6 allows SQL Injection via the user_name parameter to uploads/user.php?act=index_login.
Affected products
2= 1.6+ 1 more
- (no CPE)range: = 1.6
- (no CPE)range: = 1.6
Patches
Vulnerability mechanics
References
1- hpdoger.me/2018/08/18/%E4%BB%A3%E7%A0%81%E5%AE%A1%E8%AE%A1%E5%A4%8D%E7%8E%B0%EF%BC%9ABluecms%201.6/nvdExploitThird Party AdvisoryURL Repurposed
News mentions
0No linked articles in our index yet.