Vulnerabilities > Easysitecms > High

DATE CVE VULNERABILITY TITLE RISK
2017-06-24 CVE-2017-9848 SQL Injection vulnerability in Easysitecms Easysite 7.0.0
SQL injection vulnerability in C_InfoService.asmx in WebServices in Easysite 7.0 could allow remote attackers to execute arbitrary SQL commands via an XML document containing a crafted ArticleIDs element within a GetArticleHitsArray element.
network
low complexity
easysitecms CWE-89
7.5