Critical severity9.8NVD Advisory· Published Aug 12, 2021· Updated Jun 17, 2026
CVE-2020-20975
CVE-2020-20975
Description
In \lib\admin\action\dataaction.class.php in Gxlcms v1.1, SQL Injection exists via the $filename parameter.
Affected products
2- Gxlcms/Gxlcmsdescription
Patches
Vulnerability mechanics
References
1- blog.csdn.net/qq_41770175/article/details/93486383nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.