VYPR
High severity7.5NVD Advisory· Published Jan 7, 2019· Updated Jun 17, 2026

CVE-2019-5488

CVE-2019-5488

Description

EARCLINK ESPCMS-P8 has SQL injection in the install_pack/index.php?ac=Member&at=verifyAccount verify_key parameter. install_pack/espcms_public/espcms_db.php may allow retrieving sensitive information from the ESPCMS database.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.