Lucene search
China National Vulnerability DatabaseCNVD-2022-20135HistoryMar 14, 2022 - 12:00 a.m.
Luocms SQL Injection Vulnerability (CNVD-2022-20135)
2022-03-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
luocms
sql injection
validation
security
data theft
vulnerability
EPSS
0.002
Percentile
54.5%
Luocms is an article management system. A SQL injection vulnerability exists in Luocms v2.0, which stems from a lack of validation of external input SQL statements in /admin/link/link_ok.php. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
Related
prion
prion
Sql injection
2022-03-10 17:46:00
nvd
nvd
CVE-2022-24605
2022-03-10 17:46:21
cve
cve
CVE-2022-24605
2022-03-10 17:46:21
cvelist
cvelist
CVE-2022-24605
2022-03-09 12:49:44