Security Advisory

CVE-2020-18877

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-20 13:20:04

Last updated 2024-08-04 14:08:30

Assigner mitre

State PUBLISHED

Description

SQL Injection in Wuzhi CMS v4.1.0 allows remote attackers to obtain sensitive information via the flag parameter in the component /coreframe/app/order/admin/index.php.

← Browse all CVEs View on cve.org ↗