Simpilotgroup: >> Pop Up News >> 2.0 Security Vulnerabilities
SQL injection vulnerability in popupnewsitem/ in the Pop Up News module 2.0 and possibly earlier for phpVMS allows remote attackers to execute arbitrary SQL commands via the itemid parameter. NOTE: this was originally reported as a problem in phpVMS.
CVSS Score
7.5
EPSS Score
0.016
Published
2013-05-10