CVEs-PoC/2020/CVE-2020-18913.md

### [CVE-2020-18913](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18913)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

EARCLINK ESPCMS-P8 was discovered to contain a SQL injection vulnerability in the espcms_web/Search.php component via the attr_array parameter. This vulnerability allows attackers to access sensitive database information.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/p1ay8y3ar/cve_monitor