2025-12-09 20:39:33
VulnCheck
PUBLISHED
COMMAX Smart Home System CDP-1020n contains an SQL injection vulnerability that allows attackers to bypass authentication by injecting arbitrary SQL code through the id parameter in loginstart.asp. Attackers can exploit this by sending a POST request with malicious id values to manipulate database queries and gain unauthorized access.