CVE-2020-36951

Name of the Vulnerable Software and Affected Versions Phpscript-sgh version 0.1.0

Description The software contains a time-based blind SQL injection issue in the admin interface. Attackers can manipulate database queries through the id parameter. Exploitation involves crafting malicious payloads that cause time delays, allowing extraction of sensitive database information using conditional sleep techniques.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.