VYPR
High severity7.2NVD Advisory· Published Oct 15, 2019· Updated Jun 17, 2026

CVE-2019-17612

CVE-2019-17612

Description

An issue was discovered in 74CMS v5.2.8. There is a SQL Injection generated by the _list method in the Common/Controller/BackendController.class.php file via the index.php?m=Admin&c=Ad&a=category sort parameter.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.