CVE-2020-18544

SQL Injection in WMS v1.0 allows remote attackers to execute arbitrary code via the "username" parameter in the component "chkuser.php".
References
Link Resource
https://github.com/FeMiner/wms/issues/5 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:wms_project:wms:1.0:*:*:*:*:*:*:*

Information

Published : 2021-07-12 08:15

Updated : 2021-07-14 07:11


NVD link : CVE-2020-18544

Mitre link : CVE-2020-18544

Products Affected
No products.
CWE