Flamecms
1 CVEs
product
Monthly
FlameCMS 3.3.5 has SQL injection in account/login.php via accountName. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
SQLi
PHP
Flamecms
NVD
CVSS 3.1
9.8
EPSS
5.0%
EPSS 5%
CVSS 9.8
CRITICAL
POC
Act Now
FlameCMS 3.3.5 has SQL injection in account/login.php via accountName. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
SQLi
PHP
Flamecms
NVD