Critical severity9.8NVD Advisory· Published Mar 6, 2019· Updated Jun 17, 2026
CVE-2019-9594
CVE-2019-9594
Description
BlueCMS 1.6 allows SQL Injection via the user_id parameter in an uploads/admin/user.php?act=edit request.
Affected products
2= 1.6+ 1 more
- (no CPE)range: = 1.6
- (no CPE)range: =1.6
Patches
Vulnerability mechanics
References
1- github.com/8test/pentest/issues/1nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.