CVE-2018-18084

Severity CVSS v4.0:
Pending analysis
Type:
CWE-89 SQL Injection
Publication date:
09/10/2018
Last modified:
17/06/2026

Description

An issue was discovered in DuomiCMS 3.0. SQL injection exists in the ajax.php file, as demonstrated by the uid parameter.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:comsenz:duomicms:3.0:*:*:*:*:*:*:*