Vulnerabilities > Metalgenix > Genixcms > 0.0.8
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-01-12 | CVE-2017-5347 | SQL Injection vulnerability in Metalgenix Genixcms 0.0.8 SQL injection vulnerability in inc/mod/newsletter/options.php in GeniXCMS 0.0.8 allows remote authenticated administrators to execute arbitrary SQL commands via the recipient parameter to gxadmin/index.php. | 7.2 |
| 2017-01-12 | CVE-2017-5345 | SQL Injection vulnerability in Metalgenix Genixcms 0.0.8 SQL injection vulnerability in inc/lib/Control/Ajax/tags-ajax.control.php in GeniXCMS 0.0.8 allows remote authenticated editors to execute arbitrary SQL commands via the term parameter to the default URI. | 8.8 |