CVEs-PoC/2020/CVE-2020-35244.md

CVE-2020-35244

Description

Flamingo (aka FlamingoIM) through 2020-09-29 has a SQL injection vulnerability in UserManager::addGroup.

POC

Reference

• https://github.com/balloonwj/flamingo/issues/47

Github

No PoCs found on GitHub currently.