2019-01-17 03:29:00 2019-01-22 15:10:49

A SQL injection vulnerability in NeDi before 1.7Cp3 allows any user to execute arbitrary SQL read commands via the query.php component.