Vulnerability Details CVE-2020-35326
SQL Injection vulnerability in file /inxedu/demo_inxedu_open/src/main/resources/mybatis/inxedu/website/WebsiteImagesMapper.xml in inxedu 2.0.6 via the id value.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.02
EPSS Ranking 82.8%
CVSS Severity
CVSS v3 Score 9.8
References
- https://gitee.com/inxeduopen/inxedu/issues/I14DNJ
- https://github.com/876054426/vul/blob/master/inxedu%20through%202018-12-24%20has%20a%20SQL%20Injection%20vulnerability.md
- https://gitee.com/inxeduopen/inxedu/issues/I14DNJ
- https://github.com/876054426/vul/blob/master/inxedu%20through%202018-12-24%20has%20a%20SQL%20Injection%20vulnerability.md