CVE-2020-15540
CVE-2020-15540 affects We-COM OpenData CMS 2.0 and is caused by a lack of validation of externally entered SQL statements in the database backend, enabling SQL injection via the administrator username field. Reported technical details in connected sources confirm the vulnerability enables arbitra...