Lucene search
China National Vulnerability DatabaseCNVD-2021-91648HistoryNov 03, 2021 - 12:00 a.m.
Liaoning Vtime Technology 188Jianzhan SQL Injection Vulnerability
2021-11-0300:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
0.002 Low
EPSS
Percentile
62.3%
Liaoning Vtime Technology 188Jianzhan is an open source website builder from Liaoning Vtime Technology. 188Jianzhan v2.1.0 is vulnerable to SQL injection. The vulnerability is caused by a lack of valid restrictions and escaping of the username parameter in login.php. An attacker could use this vulnerability to execute arbitrary code and obtain escalation privileges via the username parameter in login.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| 辽宁微时光科技公司 Liaoning Vtime Technology 188Jianzhan v | eq | 2.1.0 |
Related
cve
cve
CVE-2020-23685
2021-11-02 18:15:08
cvelist
cvelist
CVE-2020-23685
2021-11-02 17:45:07
prion
prion
Sql injection
2021-11-02 18:15:00
osv
osv
CVE-2020-23685
2021-11-02 18:15:08
nvd
nvd
CVE-2020-23685
2021-11-02 18:15:08