Critical severity9.8NVD Advisory· Published Mar 2, 2021· Updated Jun 17, 2026
CVE-2020-28657
CVE-2020-28657
Description
In bPanel 2.0, the administrative ajax endpoints (aka ajax/aj_*.php) are accessible without authentication and allow SQL injections, which could lead to platform compromise.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- bPanel/bPaneldescription
Patches
Vulnerability mechanics
References
1- github.com/blackarrowsec/advisories/tree/master/2020/CVE-2020-28657nvdThird Party Advisory
News mentions
0No linked articles in our index yet.