Filtered by vendor Rocboss Subscriptions
Filtered by product Rocboss Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2019-11362 1 Rocboss 1 Rocboss 2024-11-21 N/A
app/controllers/frontend/PostController.php in ROCBOSS V2.2.1 has SQL injection via the Post:doReward score paramter, as demonstrated by the /do/reward/3 URI.