CVE-2017-16558: SQL Injection

April 25, 2019 (updated April 26, 2019)

Contao contains an SQL injection vulnerability in the back end as well as in the listing module.

References

contao.org/en/news/contao-4_4_8.html

Detect and mitigate CVE-2017-16558 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →