High severity8.8NVD Advisory· Published Jul 28, 2020· Updated Jun 17, 2026
CVE-2020-15713
CVE-2020-15713
Description
rConfig 3.9.5 is vulnerable to SQL injection. A remote authenticated attacker could send crafted SQL statements to the devices.php script using the sortBy parameter, which could allow the attacker to view, add, modify, or delete information in the back-end database.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- rConfig/rConfigdescription
Patches
Vulnerability mechanics
References
2- www.rconfig.com/downloads/v3-release-notesnvdRelease NotesVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/184939nvdVDB Entry
News mentions
0No linked articles in our index yet.