CVE-2019-16312

Name of the Vulnerable Software and Affected Versions s-cms version V3.0

Description The issue is related to a security problem where an attacker can inject malicious code. The problem occurs in the index.php file when the type parameter is set to 'text' and the S id parameter is manipulated.

Recommendations For s-cms version V3.0, consider restricting access to the index.php file or validating and sanitizing the S id parameter to prevent malicious input. As a temporary workaround, avoid using the S id parameter in the index.php file with the type set to 'text' until a proper fix is applied.