Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Blocked accounts abused in Evolution CMS SQL injection attacks
Malware and Vulnerabilities
February 12, 2021
The Daily Swig
On February 8, Synactiv revealed two security flaws in the CMS and how a “blocked account” can be exploited to perform an “unauthenticated SQLi in Evolution CMS using the X-Forwarded-For header”.
Read More
Evolution CMS
SQL Injection vulnerability
Time-based User Enumeration
Application Processes
SQL Queries
Publisher
Previous
Romania’s biggest real estate portal suffers major data ...
Breaches and Incidents
Next
Hackers ask only $1,500 for access to breached company ...
Trends, Reports, Analysis
/https://cyware-ent.s3.amazonaws.com/image_bank/ebde_shutterstock_1319668466.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/0d27_shutterstock_1457900612.jpg)
