CVE-2020-20914: SQL Injection
First published: Tue Apr 04 2023(Updated: )
SQL Injection vulnerability found in San Luan PublicCMS v.4.0 allows a remote attacker to execute arbitrary code via the sql parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| sanluan PublicCMS | =4.0 | |
| =4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability identifier for this issue?
The vulnerability identifier for this issue is CVE-2020-20914.
What is the severity of CVE-2020-20914?
The severity of CVE-2020-20914 is critical.
How does CVE-2020-20914 affect San Luan PublicCMS v.4.0?
CVE-2020-20914 allows a remote attacker to execute arbitrary code via the sql parameter in San Luan PublicCMS v.4.0.
Is there a fix available for CVE-2020-20914?
Yes, please refer to the official GitHub repository for San Luan PublicCMS for information on how to fix CVE-2020-20914.
Where can I find more information about CVE-2020-20914?
You can find more information about CVE-2020-20914 at the following GitHub issue: https://github.com/sanluan/PublicCMS/issues/29
- agent/type
- agent/references
- agent/author
- agent/severity
- agent/description
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/weakness
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/event
- vendor/publiccms
- canonical/sanluan publiccms
- version/sanluan publiccms/4.0