3 matches found
CVE-2020-9269
SOPlanning 1.45 is vulnerable to authenticated SQL Injection that leads to command execution via the users parameter, as demonstrated by exportical.php...
CVE-2020-9269
SOPlanning 1.45 is vulnerable to authenticated SQL injection that leads to command execution via the users parameter of export_ical.php. The flaw enables an authenticated attacker to inject SQL through a parameter observed in export_ical.php, potentially causing code/command execution with high i...
CVE-2020-9269
SOPlanning 1.45 is vulnerable to authenticated SQL Injection that leads to command execution via the users parameter, as demonstrated by exportical.php. Recent assessments: J3rryBl4nks at March 09, 2020 9:09pm UTC reported: This is an injection that is trivial to exploit and also to find. You can...