Vulnerability Details CVE-2019-9615
An issue was discovered in OFCMS before 1.1.3. It allows admin/system/generate/create?sql= SQL injection, related to SystemGenerateController.java.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.3%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 6.5
Products affected by CVE-2019-9615
-
cpe:2.3:a:ofcms_project:ofcms:1.1.1
-
cpe:2.3:a:ofcms_project:ofcms:1.1.2