Disclosure Date 2020/11/05

CVE-2020-5659

SQL Injection in XooNIps

XooNIpsのSQL インジェクション

Credit

stypr (@stereotype32)

Affected-Versions

XooNIps 3.49 and earlier

CWE

CWE-89

Description

XooNIps 3.49 and earlier was affected by SQL Injection. This allows remote attackers to obtain / modify information in the database.

Product-URLs

https://xoonips.osdn.jp/

Reference