CNNVD-202601-1943 Information

CNNVD ID

CNNVD-202601-1943

Related CVE

CVE-2022-50895

• CNNVD Published: 2026-01-13

Description (Chinese)

Aero CMS是美国Aero CMS公司的一个内容管理系统。 Aero CMS 0.0.1版本存在SQL注入漏洞，该漏洞源于author参数存在SQL注入漏洞，可能导致提取敏感数据库信息。

Description (English)

Aero CMS is a content management system for Aero CMS in the United States. Version Aero CMS 0.01 has an injection loophole in SQL, which stems from the infusion gap in SQL for the author parameter and may lead to the extraction of sensitive database information.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

Aero CMS

Published

2026-01-13

Last Modified

2026-02-24

References

https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/MegaTKC/2021/AeroCMS-v0.0.1-SQLi https://www.exploit-db.com/exploits/51022 https://github.com/MegaTKC/AeroCMS https://web.archive.org/web/20211008092238/ https://www.vulncheck.com/advisories/aero-cms-sql-injection https://access.redhat.com/security/cve/cve-2022-50895