Vulnerabilities > Fastadmin TP6 Project

DATE CVE VULNERABILITY TITLE RISK
2020-11-13 CVE-2020-21667 SQL Injection vulnerability in Fastadmin-Tp6 Project Fastadmin-Tp6 1.0
In fastadmin-tp6 v1.0, in the file app/admin/controller/Ajax.php the 'table' parameter passed is not filtered so a malicious parameter can be passed for SQL injection.
network
low complexity
fastadmin-tp6-project CWE-89
7.2