CVE-2020-15925 · Vexday

CVE-2020-15925

EPSS 1.1%

A SQL injection vulnerability at a tpf URI in Loway QueueMetrics before 19.10.21 allows remote authenticated attackers to execute arbitrary SQL commands via the TPF_XPAR1 parameter.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://blog.divisionzero.co/2020/08/12/cve-2020-15925/