Critical severity9.8NVD Advisory· Published Feb 1, 2021· Updated Jun 17, 2026
CVE-2020-20295
CVE-2020-20295
Description
An issue was found in CMSWing project version 1.3.8. Because the updateAction function does not check the detail parameter, malicious parameters can execute arbitrary SQL commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- CMSWing/CMSWingdescription
Patches
Vulnerability mechanics
References
1- github.com/arterli/CmsWing/issues/50nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.