2023-02-17 00:00:00
mitre
PUBLISHED
LuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/UserMapper.xml.