1 results (0.003 seconds)
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-26644
https://notcve.org/view.php?id=CVE-2021-26644
SQL-Injection vulnerability caused by the lack of verification of input values for the table name of DB used by the Mangboard bulletin board. A remote attacker can use this vulnerability to execute arbitrary code on the server where the bulletin board is running. • https://boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=67127 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •