CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2020/12/25 6:15 a.m.•6 views

CVE-2020-35708

phpList 3.5.9 allows SQL injection by admins who provide a crafted fourth line of a file to the "Config - Import Administrators" page...

7.2CVSS7.8AI score

Exploits0References2

NVD•added 2020/12/25 6:15 a.m.•12 views

CVE-2020-35708

phpList 3.5.9 allows SQL injection by admins who provide a crafted fourth line of a file to the "Config - Import Administrators" page...

7.2CVSS7.3AI score0.00274EPSS

Exploits1References2

Prion•added 2020/12/25 6:15 a.m.•9 views

Sql injection

phpList 3.5.9 allows SQL injection by admins who provide a crafted fourth line of a file to the "Config - Import Administrators" page...

6.5CVSS7.3AI score0.00274EPSS

Exploits1References2Affected Software1

Positive Technologies•added 2020/12/25 12:0 a.m.•3 views

PT-2020-17397 · Phplist · Phplist

Name of the Vulnerable Software and Affected Versions: phpList version 3.5.9 Description: The issue allows SQL injection by admins who provide a crafted fourth line of a file to the "Config - Import Administrators" page. Recommendations: For phpList version 3.5.9, consider restricting access to t...

7.2CVSS7.4AI score0.00274EPSS

Exploits1References8

CNNVD•added 2020/12/25 12:0 a.m.•2 views

PhpList SQL注入漏洞

phpList is an open source newsletter and email marketing software from phpList UK. A SQL injection vulnerability exists in phpList 3.5.9. The vulnerability can be exploited to inject SQL queries via the attribute on line 4 of the "Config - Import Administrators" page...

7.2CVSS7.1AI score0.00274EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by