CVE-2020-21120

Publication date

2023-02-15 00:00:00

Family

mitre

State

PUBLISHED

Description

SQL Injection vulnerability in file homecontrolscart.class.php in UQCMS 2.1.3, allows attackers execute arbitrary commands via the cookie_cart parameter to /index.php/cart/num.