CVE-2019-25573

Name of the Vulnerable Software and Affected Versions Green CMS versions 2.x

Description Green CMS contains an SQL injection issue that allows authenticated attackers to execute arbitrary SQL queries. Attackers can inject malicious code through the cat parameter. This is achieved by sending GET requests to the ''index.php'' file with the parameters ''m=admin'', ''c=posts'', and ''a=index'', and injecting SQL code into the cat parameter to manipulate database queries and extract sensitive information.

Recommendations Versions prior to 2.x should be updated.