Vulnerabilities

CVE-2020-28657

by Fred · 02/03/2021

In bPanel 2.0, the administrative ajax endpoints (aka ajax/aj_*.php) are accessible without authentication and allow SQL injections, which could lead to platform compromise.

Date published : 2021-03-02

https://github.com/blackarrowsec/advisories/tree/master/2020/CVE-2020-28657

Similar

Tags: Cybersecurity Alert