Umbraco 7.3.8 Improper Neutralization of Special Elements used in an SQL Command

In Umbraco 7.3.8, there is SQL Injection in the backoffice/PageWApprove/PageWApproveApi/GetInpectSearch method via the nodeName parameter.

Related:

Leave a Reply