CVE-2018-11414 · Vexday

CVE-2018-11414

EPSS 1.1%

An issue was discovered in BearAdmin 0.5. There is admin/admin_log/index.html?user_id= SQL injection because admin\controller\AdminLog.php constructs a MySQL query improperly.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/yupoxiong/BearAdmin/issues/5