CVE-2018-18285

Name of the Vulnerable Software and Affected Versions CMG Suite versions 8.4 SP2 and earlier

Description The issue is related to SQL injection vulnerabilities due to insufficient input validation for the login interface. This could allow an unauthenticated attacker to conduct an SQL injection attack, potentially extracting sensitive information from the database and executing arbitrary scripts.

Recommendations For CMG Suite versions 8.4 SP2 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.