Qiming Star Information Technology Group Limited by Share Ltd

1 exploit Active since Dec 2018
CVE-2018-20018 WRITEUP HIGH WRITEUP
S-CMS V3.0 - SQL Injection via S_id Parameter
S-CMS V3.0 has SQL injection via the S_id parameter, as demonstrated by the /1/?type=productinfo&S_id=140 URI.
CVSS 7.5