2018-05-24 18:00:00
mitre
PUBLISHED
An issue was discovered in BearAdmin 0.5. There is admin/admin_log/index.html?user_id= SQL injection because admincontrollerAdminLog.php constructs a MySQL query improperly.