Critical severity9.8NVD Advisory· Published Dec 21, 2020· Updated Jul 5, 2026
CVE-2020-35276
CVE-2020-35276
Description
EgavilanMedia ECM Address Book 1.0 is affected by SQL injection. An attacker can bypass the Admin Login panel through SQLi and get Admin access and add or remove any user.
Affected products
2- EgavilanMedia/ECM Address Bookdescription
- Range: 1.0
Patches
Vulnerability mechanics
References
3- hardik-solanki.medium.com/authentication-admin-panel-bypass-which-leads-to-full-admin-access-control-c10ec4ab4255nvdExploitThird Party Advisory
- ecm.comnvdNot Applicable
- egavilanmedia.comnvdProduct
News mentions
0No linked articles in our index yet.