CVE List

CVE-2020-13127

Critical 8.8

A SQL injection vulnerability at a tpf URI in Loway QueueMetrics before 19.04.1 allows remote authenticated attackers to execute arbitrary SQL commands via the TASKS_LIST__pt.querystring parameter.

Published September 9, 2020.

Affected software

Loway Queuemetrics

Reference links

Sign Up for Alerts