Vulnerability Description
In NavigateCMS version 2.9.4 and below, function in `templates.php` is vulnerable to sql injection on parameter `template-properties-order`, which results in arbitrary sql query execution in the backend database.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Naviwebs | Navigatecms | <= 2.9.4 |
Related Weaknesses (CWE)
References
- https://gist.github.com/victomteng1997/ed429fed7de46651c89f05e7591fd4fePatchThird Party Advisory
- https://github.com/NavigateCMS/Navigate-CMSProduct
- https://github.com/NavigateCMS/Navigate-CMS/issues/26ExploitThird Party Advisory
- https://gist.github.com/victomteng1997/ed429fed7de46651c89f05e7591fd4fePatchThird Party Advisory
- https://github.com/NavigateCMS/Navigate-CMSProduct
- https://github.com/NavigateCMS/Navigate-CMS/issues/26ExploitThird Party Advisory
FAQ
What is CVE-2021-37475?
CVE-2021-37475 is a vulnerability with a CVSS score of 9.8 (CRITICAL). In NavigateCMS version 2.9.4 and below, function in `templates.php` is vulnerable to sql injection on parameter `template-properties-order`, which results in arbitrary sql query execution in the backe...
How severe is CVE-2021-37475?
CVE-2021-37475 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-37475?
Check the references section above for vendor advisories and patch information. Affected products include: Naviwebs Navigatecms.