Lucene search

CVE-2020-35326

🗓️ 18 Jan 2023 19:10:15Reported by mitreType

cve🔗 web.nvd.nist.gov👁 22 Views🌐 WEB

CVE-2020-35326 SQL Injection in inxedu 2.0.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
Prion	Sql injection	18 Jan 202319:15	–	prion
NVD	CVE-2020-35326	18 Jan 202319:15	–	nvd
Vulnrichment	CVE-2020-35326	18 Jan 202300:00	–	vulnrichment
Cvelist	CVE-2020-35326	18 Jan 202300:00	–	cvelist

Nvd

Node

inxedu inxeduMatch2.0.6

Source	Link
gitee	www.gitee.com/inxeduopen/inxedu/issues/I14DNJ
github	www.github.com/876054426/vul/blob/master/inxedu%20through%202018-12-24%20has%20a%20SQL%20Injection%20vulnerability.md

Parameter	Position	Path	Description	CWE
id	query param	/inxedu/demo_inxedu_open/src/main/resources/mybatis/inxedu/website/WebsiteImagesMapper.xml	SQL Injection vulnerability via the id parameter.	CWE-89

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Jan 2023 19:15Current

9.8High risk

Vulners AI Score9.8

CVSS39.8

EPSS0.01987

SSVC

CWE-89