GHSA-54vr-4j7c-rcvjHighCVSS 8.2

Zechat 1.5 contains a SQL injection vulnerability in the v parameter that allows unauthenticated...

Published
May 17, 2026
Last Modified
May 17, 2026

🔗 CVE IDs covered (1)

📋 Description

Zechat 1.5 contains a SQL injection vulnerability in the v parameter that allows unauthenticated attackers to extract database information using time-based blind techniques. Attackers can exploit the v parameter with sleep-based blind injection to confirm vulnerability and extract data.

🔗 References (5)