2 matches found
CVE-2020-20797
FlameCMS 3.3.5 contains a time-based blind SQL injection vulnerability in /account/register.php...
CVE-2020-20797
FlameCMS 3.3.5 contains a time-based blind SQL injection in /account/register.php. Root cause: insufficient input validation/escaping allows parameterized SQL execution. Affects multiple CIA with high impact per CVSSv3.1 (CRITICAL, 9.8) and CVSSv2 (HIGH, 7.5). Exploitation details are not provide...