Vulnerabilities > Phpsugar > High

DATE CVE VULNERABILITY TITLE RISK
2017-10-18 CVE-2017-15578 SQL Injection vulnerability in PHPsugar PHP Melody
In PHPSUGAR PHP Melody before 2.7.3, SQL Injection exists via the image parameter to admin/edit_category.php.
network
low complexity
phpsugar CWE-89
8.8
8.8