CVE-2020-18081: SQL Injection
First published: Fri Dec 17 2021(Updated: )
The checkuser function of SEMCMS 3.8 was discovered to contain a vulnerability which allows attackers to obtain the password in plaintext through a SQL query.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| sem-cms | =3.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for SEMCMS 3.8?
The vulnerability ID for SEMCMS 3.8 is CVE-2020-18081.
What is the severity of CVE-2020-18081?
The severity of CVE-2020-18081 is high with a CVSS score of 7.5.
What is the description of CVE-2020-18081?
CVE-2020-18081 is a vulnerability in the checkuser function of SEMCMS 3.8 that allows attackers to obtain the password in plaintext through a SQL query.
Which software version is affected by CVE-2020-18081?
CVE-2020-18081 affects SEMCMS version 3.8.
Is there a fix available for CVE-2020-18081?
The fix for CVE-2020-18081 is not provided. Please refer to the related reference link for more information.
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/severity
- agent/author
- agent/weakness
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/sem-cms
- canonical/sem-cms
- version/sem-cms/3.8