2 matches found
Wuzhi CMS SQL Injection (CVE-2020-20122)
An SQL injection vulnerability exists in Wuzhi CMS. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2020-20122
CVE-2020-20122 affects Wuzhi CMS v4.1. The vulnerability is a SQL injection in the checktitle() function located at /coreframe/app/content/admin/content.php, allowing an attacker to execute arbitrary SQL commands. Several connected sources corroborate that exploitation can be remote and may lead ...