CVE-2020-20120 Blast Radius

CRITICAL • CVSS 9.8ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array is not passed to the "where" and "query" methods.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2020-20120.

Start Free Scan →← Back to CVE-2020-20120