2 matches found
CVE-2020-23685
SQL Injection vulnerability in 188Jianzhan v2.1.0, allows attackers to execute arbitrary code and gain escalated privileges, via the username parameter to login.php...
CVE-2020-23685
CVE-2020-23685 affects 188Jianzhan v2.1.0, where SQL injection via the username parameter in login.php permits arbitrary code execution and privilege escalation. Root cause: insufficient input validation/escaping on login.php. Impact: potential compromise of authentication and system integrity. M...