CVE-2020-8887
The CVE-2020-8887 entry concerns Telestream Tektronix Medius (and Sentry) before version 10.7.5, affected by an SQL injection in the login flow. Specifically, an unauthenticated attacker can dump database contents by manipulating the page parameter in a login request to index.php. The root cause ...