CVE-2020-8841

Published February 10th, 2020

View on NVD ↗

CVSS v3

8.8

HIGH

CVSS v2

6.5

MEDIUM

Affected

PROJECT

Description

An issue was discovered in TestLink 1.9.19. The relation_type parameter of the lib/requirements/reqSearch.php endpoint is vulnerable to authenticated SQL Injection.

TestLinkOpenSourceTRMS/testlink-code

TestLink Open Source Test & Requirement Management System

GitHub

1.6K