CVE-2021-28419

Click the icon to Follow me:- twitterTelegramRedditDiscord

Summary:

The “order_col” parameter in archive.php of SEO Panel 4.8.0 is vulnerable to time-based blind SQL injection, which leads to the ability to retrieve all databases.

Reference Links(if available):

  • https://github.com/seopanel/Seo-Panel/issues/209
  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • Available for Amazon Prime