Critical severity9.8NVD Advisory· Published Feb 1, 2021· Updated Jun 17, 2026
CVE-2020-20289
CVE-2020-20289
Description
Sql injection vulnerability in the yccms 3.3 project. The no_top function's improper judgment of the request parameters, triggers a sql injection vulnerability.
Affected products
2- yccms/yccmsdescription
Patches
Vulnerability mechanics
References
2- blog.jiguang.xyz/posts/yccms-sql-injection/nvdExploitThird Party Advisory
- www.yccms.netnvdProductVendor AdvisoryURL Repurposed
News mentions
0No linked articles in our index yet.