Posted by Karn Ganeshen on Jul 06

*CIMA DocuClass Enterprise Content Management – Multiple Vulnerabilities*

DocuClass is a modular and scalable enterprise content management (ECM)
solution that allows organizations to streamline internal operations by
significantly improving the way they manage their information within a
business process.

*Vendor Response*: None

*Vulnerability Findings*

1. *SQL Injection* [Post Auth]

DocuClass web application contains a SQL injection…