CVEs-PoC/2020/CVE-2020-35243.md

CVE-2020-35243

Description

Flamingo (aka FlamingoIM) through 2020-09-29 has a SQL injection vulnerability in UserManager::updateUserInfoInDb.

POC

Reference

• https://github.com/balloonwj/flamingo/issues/47

Github

No PoCs found on GitHub currently.