CVE-2020-35244

Publication date

2020-12-26 19:15:59

Family

mitre

State

PUBLISHED

Description

Flamingo (aka FlamingoIM) through 2020-09-29 has a SQL injection vulnerability in UserManager::addGroup.