Unrated severityNVD Advisory· Published Oct 1, 2020· Updated Aug 4, 2024
CVE-2020-25990
CVE-2020-25990
Description
WebsiteBaker 2.12.2 allows SQL Injection via parameter 'display_name' in /websitebaker/admin/preferences/save.php. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WebsiteBaker/WebsiteBakerdescription
- Range: = 2.12.2
Patches
Vulnerability mechanics
References
2- websitebaker.org/pages/en/home.phpmitrex_refsource_MISC
- www.exploit-db.com/exploits/48849mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.