Vulnerability CVE-2020-21152


Published: 2023-01-20

Description:
SQL Injection vulnerability in inxedu 2.0.6 allows attackers to execute arbitrary commands via the functionIds parameter to /saverolefunction.

 References:
http://8sec.cc/index.php/archives/330/
https://gitee.com/inxeduopen/inxedu/issues/I14DNG

Copyright 2026, cxsecurity.com

 

Back to Top