CVE-2020-24769

CVE-2020-24769

EPSS 1.9%

SQL injection vulnerability in takeconfirm.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the classes parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/burpheart/CVE/2020-08-13-01.md https://github.com/burpheart/CVE/blob/master/2020-08-13-01.md https://nexusphp.org/2021/02/03/nexusphp-v1-6-0-beta2/