CVE-2024-48238 | WTCMS 1.0 Admin\Controller\NavControl.class.php edit_post parentid sql injection (Issue 14)

CVE-2024-48238 | WTCMS 1.0 Admin\Controller\NavControl.class.php edit_post parentid sql injection (Issue 14)

A vulnerability was found in WTCMS 1.0. It has been declared as critical. Affected by this vulnerability is the function edit_post of the file /Admin\Controller\NavControl.class.php. The manipulation of the argument parentid leads to sql injection. This vulnerability is known as CVE-2024-48238. Access to the local network is required for this attack. There is no exploit available.