3 matches found
Phpzag SQL Injection (CVE-2020-8519; CVE-2020-8520; CVE-2020-8521)
An SQL injection vulnerability exists in Phpzag. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2020-8520
SQL injection in order and column parameters in Records.php for phpzag live add edit delete data tables records with ajax php mysql...
CVE-2020-8520
CVE-2020-8520 describes an SQL injection in the Records.php file used by Phpzag Live DataTables (and related SpryMedia DataTables implementations) where the vulnerable code handles the order and column parameters. The underlying flaw permits crafting statements via these parameters, enabling mani...