Vulnerabilities > Naviwebs > Navigate CMS > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-06-28 CVE-2020-23711 SQL Injection vulnerability in Naviwebs Navigate CMS 2.9
SQL Injection vulnerability in NavigateCMS 2.9 via the URL encoded GET input category in navigate.php.
network
low complexity
naviwebs CWE-89
critical
 9.8
9.8
2018-10-03 CVE-2018-17552 SQL Injection vulnerability in Naviwebs Navigate CMS 2.8
SQL Injection in login.php in Naviwebs Navigate CMS 2.8 allows remote attackers to bypass authentication via the navigate-user cookie.
network
low complexity
naviwebs CWE-89
critical
 9.8
9.8