B2evolution » B2evolution : Security Vulnerabilities, CVEs, Published In 2012 (Sql injection) CVSS score >= 6
SQL injection vulnerability in blogs/htsrv/viewfile.php in b2evolution 4.1.3 allows remote authenticated users to execute arbitrary SQL commands via the root parameter.
Max CVSS
6.5
EPSS Score
0.26%
Published
2012-11-17
Updated
2017-08-29
1 vulnerabilities found