CVE-2020-23980

CVE-2020-23980

EPSS 2.2%

DesignMasterEvents Conference management 1.0.0 allows SQL Injection via the username field on the administrator login page.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://cxsecurity.com/issue/WLB-2020030177 https://packetstormsecurity.com/files/156959/DesignMasterEvents-CMS-1.0-SQL-Injection-Cross-Site-Scripting.html