2 matches found
CVE-2020-23980
DesignMasterEvents Conference management 1.0.0 allows SQL Injection via the username field on the administrator login page...
CVE-2020-23980
CVE-2020-23980 affects DesignMasterEvents Conference Management 1.0.0 and allows SQL Injection via the administrator login page username field. CVSS3.1 base score 9.8 (CRITICAL); attack vector: NETWORK, no user interaction, no privileges required, confidentiality/integrity/availability impact: HI...