3 matches found
CVE-2017-20128
A vulnerability has been found in KB Messages PHP Script 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument username/password with the input 'or''=' leads to sql injection. The attack can be launched remotely. The exploit h...
CVE-2017-20128 KB Messages PHP Script sql injection
A vulnerability has been found in KB Messages PHP Script 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument username/password with the input 'or''=' leads to sql injection. The attack can be launched remotely. The exploit h...
CVE-2017-20128
KB Messages PHP Script 1.0 is affected by an unauthenticated SQL injection vulnerability. The issue arises from improper handling of the username/password inputs, where the payload 'or''=' enables injection. It is exploitable remotely and the exploit has been publicly disclosed, making active exp...