← Back to CVE List

CVE-2020-18877

Published: 2021-08-20T14:15Z
Last Modified: 2024-11-21T05:08Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
SQL Injection in Wuzhi CMS v4.1.0 allows remote attackers to obtain sensitive information via the 'flag' parameter in the component '/coreframe/app/order/admin/index.php'. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt