CVE-2020-5659

SQL Injection in XooNIps (XOOPS 用モジュール XooNIps における SQL インジェクション)

XooNIps 3.49 and earlier was affected by SQL Injection. This allows remote attackers to obtain / modify information in the database.

Disclosure Date

2020/11/05

Credit

stypr (@stereotype32)

Affected-Versions

XooNIps: v3.49 and earlier

CWE

CWE-89

Product-URLs

https://xoonips.osdn.jp/

Reference