CVE-2020-8637

A SQL injection vulnerability in TestLink 1.9.20 allows attackers to execute arbitrary SQL commands in dragdroptreenodes.php via the node_id parameter.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:testlink:testlink:1.9.20:*:*:*:*:*:*:*

Information

Published : 2020-04-03 12:15

Updated : 2020-04-06 05:34


NVD link : CVE-2020-8637

Mitre link : CVE-2020-8637


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

dedicated server usa

Products Affected

testlink

  • testlink