Critical severity9.8NVD Advisory· Published Mar 24, 2021· Updated Jun 17, 2026
CVE-2020-35337
CVE-2020-35337
Description
ThinkSAAS before 3.38 contains a SQL injection vulnerability through app/topic/action/admin/topic.php via the title parameter, which allows remote attackers to execute arbitrary SQL commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ThinkSAAS/ThinkSAASdescription
Patches
Vulnerability mechanics
References
2- blog.unc1e.com/2020/12/thinksaas-has-post-auth-sql-injection.htmlnvdExploitThird Party Advisory
- github.com/thinksaas/ThinkSAAS/issues/24nvdThird Party Advisory
News mentions
0No linked articles in our index yet.