Lucene search
China National Vulnerability DatabaseCNVD-2021-102391HistoryDec 21, 2021 - 12:00 a.m.
SEMCMS SQL Injection Vulnerability
2021-12-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
semcms
foreign trade
content management system
access control
vulnerability
sql injection
plaintext passwords
sql queries
attacker
cnvd
EPSS
0.003
Percentile
70.5%
SEMCMS is a foreign trade web content management system (CMS) that supports multiple languages. SEMCMS has an access control error vulnerability, which stems from the fact that the checkuser function was found to have a vulnerability that could be exploited by an attacker to obtain passwords in plaintext via SQL queries.
Related
cve
cve
CVE-2020-18081
2021-12-17 17:15:10
prion
prion
Design/Logic Flaw
2021-12-17 17:15:00
cvelist
cvelist
CVE-2020-18081
2021-12-17 16:15:44
nvd
nvd
CVE-2020-18081
2021-12-17 17:15:10