VYPR

kmaleonW.php

by Kmaleon

CVEs (1)

  • CVE-2021-47766HigJan 15, 2026
    risk 0.46cvss 7.1epss 0.00

    Kmaleon 1.1.0.205 contains an authenticated SQL injection vulnerability in the 'tipocomb' parameter of kmaleonW.php that allows attackers to manipulate database queries. Attackers can exploit this vulnerability using boolean-based, error-based, and time-based blind SQL injection…