26Eki
CVE-2024-48238 | WTCMS 1.0 Admin\Controller\NavControl.class.php edit_post parentid sql injection (Issue 14)
A vulnerability was found in WTCMS 1.0. It has been declared as critical. Affected by this vulnerability is the functionedit_post
of the file /Admin\Controller\NavControl.class.php. The manipulation of the argument parentid leads to sql injection.
This vulnerability is known as CVE-2024-48238. Access to the local network is required for this attack. There is no exploit available.