2 matches found
CVE-2020-23973
KandNconcepts Club CMS 1.1 and 1.2 has SQL Injection via the 'team.php,player.php,club.php' id parameter...
CVE-2020-23973
The CVE-2020-23973 entry affects KandNconcepts Club CMS versions 1.1 and 1.2, where SQL Injection is caused by unsanitized input in the id parameter of team.php, player.php, and club.php. Root cause: improper handling/validation of user-supplied id values leading to SQL injection. Documented impa...