Unrated severityNVD Advisory· Published Jul 12, 2021· Updated Aug 4, 2024
CVE-2020-18544
CVE-2020-18544
Description
SQL Injection in WMS v1.0 allows remote attackers to execute arbitrary code via the "username" parameter in the component "chkuser.php".
Affected products
2- WMS/WMSdescription
Patches
Vulnerability mechanics
References
1- github.com/FeMiner/wms/issues/5mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.