b2evolution Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability - CVE-2016-8901 - Vulnerability Database

b2evolution

b2evolution Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability - CVE-2016-8901

Critical

Reference: CVE-2016-8901

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-8901

Title: b2evolution Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability

Overview:

b2evolution 6.7.6 suffer from an Object Injection vulnerability in /htsrv/call_plugin.php.