SQL Injection Vulnerability in phpMyChat-Plus 1.98's deluser.php Delete User Functionality

CVE-2020-9265 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

phpMyChat-Plus 1.98 is vulnerable to multiple SQL injections against the deluser.php Delete User functionality, as demonstrated by pmc_username.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.