High severity7.2NVD Advisory· Published Oct 15, 2019· Updated Jun 17, 2026
CVE-2019-17612
CVE-2019-17612
Description
An issue was discovered in 74CMS v5.2.8. There is a SQL Injection generated by the _list method in the Common/Controller/BackendController.class.php file via the index.php?m=Admin&c=Ad&a=category sort parameter.
Affected products
2- 74CMS/74CMSdescription
Patches
Vulnerability mechanics
References
1- github.com/Ers4tz/vuln/blob/master/74cms_5.2.8_SQLI.mdnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.