4 matches found
CVE-2020-35276
EgavilanMedia ECM Address Book 1.0 is affected by SQL injection. An attacker can bypass the Admin Login panel through SQLi and get Admin access and add or remove any user...
EgavilanMedia ECM Address Book SQL Injection (CVE-2020-35276)
An SQL injection vulnerability exists in EgavilanMedia ECM Address Book. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2020-35276
creationtimestamp| type| source ---|---|--- 2020-12-21 18:52:08+00:00| seen| https://t.me/cibsecurity/21123 2021-12-21 18:23:32+00:00| published-proof-of-concept| https://t.me/freelearningtech/618 2021-12-21 18:28:58+00:00| published-proof-of-concept| https://t.me/AfroHax/49 2026-07-06...
CVE-2020-35276
CVE-2020-35276 affects EgavilanMedia ECM Address Book 1.0 and is caused by an SQL injection that can bypass the Admin Login panel, enabling an attacker to gain Admin access and add or remove users. The connected records confirm the vulnerability exists and describe the impact as admin access via ...