A vulnerability was found in OpenRapid RapidCMS up to 1.3...
Moderate severity
Unreviewed
Published
Aug 30, 2024
to the GitHub Advisory Database
Description
Published by the National Vulnerability Database
Aug 30, 2024
Published to the GitHub Advisory Database
Aug 30, 2024
A vulnerability was found in OpenRapid RapidCMS up to 1.3.1. It has been classified as critical. This affects an unknown part of the file /admin/user/user-move-run.php. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
References