CVE-2020-21665
In fastadmin v1.0.0.20191212_beta, authenticated administrators can be vulnerable to SQL injection via a crafted parameter in the URL /admin/ajax/weigh. This CVE (CVE-2020-21665) is documented in multiple sources (NVD, RH Red Hat security page, OSV, CVE listing) with CVSS v2 base score 6.5 (Mediu...