← Back to CVE List

CVE-2019-14266

Published: 2019-07-25T16:15Z
Last Modified: 2024-11-21T04:26Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
OpenSNS v6.1.0 allows SQL Injection via the index.php?s=/ucenter/Config/ uid parameter because of the getNeedQueryData function in Application/Common/Model/UserModel.class.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt