8.8

CVSS Score

3.0

Basic Information

CVE ID

CVE-2017-8377

GHSA ID

GHSA-34vw-8cjw-cwjj

EPSS Score

0.6276%

CWE

CWE-89

Published

5/17/2022

Updated

4/25/2024

KEV Status

Technology

PHP

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2017-8377

CVE-2017-8377: GeniXCMS SQL Injection

GeniXCMS 1.0.2 has SQL Injection in inc/lib/Control/Backend/menus.control.php via the menuid parameter.

(GitHub Advisory)

8.8

CVSS Score

3.0

Basic Information

CVE ID

CVE-2017-8377

GHSA ID

GHSA-34vw-8cjw-cwjj

EPSS Score

0.6276%

CWE

CWE-89

Published

5/17/2022

Updated

4/25/2024

KEV Status

Technology

PHP

Technical Details

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
genix/cms	composer	< 1.1.0	1.1.0

Vulnerability Intelligence
Miggo AI

Root Cause Analysis:

In progress

WAF Protection Rules

WAF Rule

**niX*MS *.*.* **s SQL Inj**tion in `in*/li*/*ontrol/***k*n*/m*nus.*ontrol.p*p` vi* t** m*nui* p*r*m*t*r.

Reasoning

No *n*lysis *v*il**l*

8.8

Basic Information

Concerned about an active attack path?

CVE-2017-8377: GeniXCMS SQL Injection

8.8

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI