VULHUB ™

phpSQLiteCMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user supplied input. An attacker can leverage these issues to upload arbitrary code and run it in the context of the web server process, to perform certain unauthorized actions and gain access to the affected application, to gain elevated privileges within the context of the affected user, to delete arbitrary files and to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.

phpSQLiteCMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user supplied input. An attacker can leverage these issues to upload arbitrary code and run it in the context of the web server process, to perform certain unauthorized actions and gain access to the affected application, to gain elevated privileges within the context of the affected user, to delete arbitrary files and to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.