High severity7.5NVD Advisory· Published Jul 21, 2021· Updated Jun 17, 2026
CVE-2020-23282
CVE-2020-23282
Description
SQL injection in Logon Page in MV's mConnect application, v02.001.00, allows an attacker to use a non existing user with a generic password to connect to the application and get access to unauthorized information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- MV/mConnect applicationdescription
Patches
Vulnerability mechanics
References
2- github.com/ifmacedo/mconnect/blob/main/SQLinjectionnvdExploitThird Party Advisory
- www.linkedin.com/pulse/mconnect-mv-sql-injection-parcial-iran/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.