AI Score
Confidence
Low
EPSS
Percentile
40.7%
phpList 3.5.9 allows SQL injection by admins who provide a crafted fourth line of a file to the “Config - Import Administrators” page.
sourceforge.net/projects/phplist/files/phplist/
tufangungor.github.io/exploit/2020/12/15/phplist-3.5.9-sql-injection.html