RSS   Vulnerabilities for 'Koseven'   RSS

2019-02-21
 
CVE-2019-8979

CWE-89
 

 
Kohana through 3.3.6 has SQL Injection when the order_by() parameter can be controlled.

 


Copyright 2019, cxsecurity.com

 

Back to Top