CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 3CVE-2020-13118 – Mikrotik Router Monitoring System 1.2.3 - 'community' SQL Injection
https://notcve.org/view.php?id=CVE-2020-13118
An issue was discovered in Mikrotik-Router-Monitoring-System through 2018-10-22. SQL Injection exists in check_community.php via the parameter community. Se detectó un problema en Mikrotik-Router-Monitoring-System hasta el 22-10-2018. Una Inyección SQL se persenta en el archivo check_community.php por medio del parámetro community. Mikrotik Router Monitoring System versions 1.2.3 and below suffer from a remote SQL injection vulnerability. • https://www.exploit-db.com/exploits/48474 http://packetstormsecurity.com/files/157733/Mikrotik-Router-Monitoring-System-1.2.3-SQL-Injection.html https://github.com/adeoluwa-adebiyi/Mikrotik-Router-Monitoring-System/issues/4 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •