Site icon API Security Blog

CVE-2017-20127

A vulnerability was found in KB Login Authentication Script 1.1 and classified as critical. Affected by this issue is some unknown functionality. The manipulation of the argument username/password with the input β€˜or”=’ leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.Read More

Exit mobile version