The WIMP website co-construction management platform from HAMASTAR Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.

The WIMP website co-construction management platform from HAMASTAR Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.

Уязвимость платформы для совместного управления веб-сайтом WIMP, связанная с непринятием мер по защите структуры запроса SQL, позволяющая нарушителю выполнить произвольные команды