PT-2020-17112 · Egavilanmedia · Egavilanmedia User Registration/Login System With Admin Panel

Hemant Patidar

Published

2020-12-30

Updated

2021-01-04

CVE-2020-29228

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions EGavilanMedia User Registration and Login System With Admin Panel version 1.0

Description The issue affects the User Login Page, where SQL injection is possible.

Recommendations For EGavilanMedia User Registration and Login System With Admin Panel version 1.0, consider implementing proper input validation and sanitization to prevent SQL injection attacks. As a temporary workaround, restrict access to the User Login Page until a fix is available.

Exploit

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2020-29228

Affected Products

Egavilanmedia User Registration/Login System With Admin Panel

PT-2020-17112 · Egavilanmedia · Egavilanmedia User Registration/Login System With Admin Panel

CVE-2020-29228

Weakness Enumeration

Related Identifiers

Affected Products

References · 4