SQL Injection Vulnerability in BearAdmin 0.5

CVE-2018-11414 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

An issue was discovered in BearAdmin 0.5. There is admin/admin_log/index.html?user_id= SQL injection because admin\controller\AdminLog.php constructs a MySQL query improperly.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.