CVE-2018-20572

WUZHI CMS 4.1.0 allows coreframe/app/coupon/admin/copyfrom.php SQL injection via the index.php?m=promote&f=index&v=search keywords parameter, a related issue to CVE-2018-15893.
References
Link Resource
https://github.com/wuzhicms/wuzhicms/issues/166 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:wuzhicms:wuzhicms:4.1.0:*:*:*:*:*:*:*

Information

Published : 2018-12-28 04:29

Updated : 2019-01-09 09:00


NVD link : CVE-2018-20572

Mitre link : CVE-2018-20572

Products Affected
No products.
CWE