SQL Injection Vulnerability in Stock Management System v1.0 Login Component

SQL Injection Vulnerability in Stock Management System v1.0 Login Component

CVE-2020-24197 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A SQL injection vulnerability in the login component in Stock Management System v1.0 allows remote attacker to execute arbitrary SQL commands via the username parameter.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.