CVE-2020-35276
CVE-2020-35276CVE-2020-35276
egavilanmedia / ecm_address_book
Description
EgavilanMedia ECM Address Book 1.0 is affected by SQL injection. An attacker can bypass the Admin Login panel through SQLi and get Admin access and add or remove any user.
Scoring
| CVSS | 9.8 () |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| Last modified | 2026-07-05 |