SQL Injection Vulnerability in PHP-CMS v1.0's search.php Component

SQL Injection Vulnerability in PHP-CMS v1.0's search.php Component

CVE-2020-18263 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

PHP-CMS v1.0 was discovered to contain a SQL injection vulnerability in the component search.php via the search parameter. This vulnerability allows attackers to access sensitive database information.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.