CVE-2020-9398

ISPConfig before 3.1.15p3, when the undocumented reverse_proxy_panel_allowed=sites option is manually enabled, allows SQL Injection.
Configurations

Configuration 1

cpe:2.3:a:ispconfig:ispconfig:3.1.15:-:*:*:*:*:*:*
cpe:2.3:a:ispconfig:ispconfig:3.1.15:p1:*:*:*:*:*:*
cpe:2.3:a:ispconfig:ispconfig:3.1.15:p2:*:*:*:*:*:*
cpe:2.3:a:ispconfig:ispconfig:*:*:*:*:*:*:*:*

Information

Published : 2020-02-25 09:15

Updated : 2020-03-03 05:01


NVD link : CVE-2020-9398

Mitre link : CVE-2020-9398

Products Affected
No products.
CWE