CVE-2018-14476

Name of the Vulnerable Software and Affected Versions GeniXCMS version 1.1.5

Description The issue is related to a security problem where an attacker can execute malicious scripts. This is possible due to inadequate input validation in the dbuser or dbhost parameters during the installation process, specifically in step 1.

Recommendations For GeniXCMS version 1.1.5, avoid using the dbuser or dbhost parameters until the issue is resolved. As a temporary workaround, consider validating and sanitizing user input for these parameters to prevent malicious script execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.