CVEDB API

Administrator/index.php in Ivan Cordoba Generic Content Management System (CMS) through 2018-04-28 allows SQL injection for authentication bypass.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.7%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2018-20568

Generic Content Management System Project » Generic Content Management System » Version: N/A

cpe:2.3:a:generic_content_management_system_project:generic_content_management_system:-
Generic Content Management System Project » Generic Content Management System » Version: 2018-01-04

cpe:2.3:a:generic_content_management_system_project:generic_content_management_system:2018-01-04
Generic Content Management System Project » Generic Content Management System » Version: 2018-01-05

cpe:2.3:a:generic_content_management_system_project:generic_content_management_system:2018-01-05
Generic Content Management System Project » Generic Content Management System » Version: 2018-01-08

cpe:2.3:a:generic_content_management_system_project:generic_content_management_system:2018-01-08
Generic Content Management System Project » Generic Content Management System » Version: 2018-03-03

cpe:2.3:a:generic_content_management_system_project:generic_content_management_system:2018-03-03
Generic Content Management System Project » Generic Content Management System » Version: 2018-04-10

cpe:2.3:a:generic_content_management_system_project:generic_content_management_system:2018-04-10
Generic Content Management System Project » Generic Content Management System » Version: 2018-04-28

cpe:2.3:a:generic_content_management_system_project:generic_content_management_system:2018-04-28