CVE-2020-29280: SQL Injection
First published: Wed Dec 02 2020(Updated: )
The Victor CMS v1.0 application is vulnerable to SQL injection via the 'search' parameter on the search.php page.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Victor Cms Project Victor Cms | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-29280?
CVE-2020-29280 is a SQL injection vulnerability in the Victor CMS v1.0 application.
How severe is CVE-2020-29280?
CVE-2020-29280 has a severity score of 9.8, which indicates a critical vulnerability.
How does CVE-2020-29280 affect the Victor CMS v1.0 application?
CVE-2020-29280 allows an attacker to perform SQL injection via the 'search' parameter on the search.php page of the Victor CMS v1.0 application.
What is the affected software?
The affected software is Victor CMS v1.0.
Is there a fix for CVE-2020-29280?
Yes, there is a fix available for CVE-2020-29280. Please refer to the vendor's official documentation for the patch or update.
- collector/nvd-index
- vendor/victor cms project
- canonical/victor cms project victor cms
- version/victor cms project victor cms/1.0