CVE-2021-29378 · Vexday

CVE-2021-29378

EPSS 0.7%

SQL Injection in pear-admin-think version 2.1.2, allows attackers to execute arbitrary code and escalate privileges via crafted GET request to Crud.php.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://gitee.com/pear-admin/Pear-Admin-Think/issues/I3DIEC