CVE-2020-12870

RainbowFish PacsOne Server 6.8.4 allows SQL injection on the username parameter in the signup page.
References
Link Resource
https://www.pacsone.net/download.htm Release Notes Vendor Advisory
https://github.com/bzyo/cve-pocs/tree/master/CVE-2020-12870 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:rainbowfishsoftware:pacsone_server:6.8.4:*:*:*:*:*:*:*

Information

Published : 2020-09-30 09:15

Updated : 2020-10-02 02:06


NVD link : CVE-2020-12870

Mitre link : CVE-2020-12870

Products Affected
No products.
CWE