CVE-2020-24197

CVE-2020-24197

EPSS 1.4%

A SQL injection vulnerability in the login component in Stock Management System v1.0 allows remote attacker to execute arbitrary SQL commands via the username parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://cxsecurity.com/issue/WLB-2020090028 https://www.sourcecodester.com/php/14366/stock-management-system-php.html