CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-20915

SQL Injection vulnerability found in PublicCMS v.4.0 allows a remote attacker to execute arbitrary code via sql parameter of the the SysSiteAdminControl.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.3%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/sanluan/PublicCMS/issues/29
https://github.com/sanluan/PublicCMS/issues/29

Products affected by CVE-2020-20915

Publiccms » Publiccms » Version: 4.0

cpe:2.3:a:publiccms:publiccms:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-20915

Products

Pricing

Contact Us