Vulnerability CVE-2020-28091


Published: 2020-11-18

Description:
cxuucms v3 has a SQL injection vulnerability, which can lead to the leakage of all database data via the keywords parameter via search.php.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
xuucms 3 SQL Injection
icekam
22.11.2020

Type:

CWE-89

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

 References:
https://github.com/cbkhwx/cxuucmsv3/issues/1

Copyright 2024, cxsecurity.com

 

Back to Top