phpList Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2020-15072 - Vulnerability Database
phpList Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2020-15072
High
Reference:
CVE-2020-15072
Title:
phpList Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Overview:
An issue was discovered in phpList through 3.5.4. An error-based SQL Injection vulnerability exists via the Import Administrators section.