{"uuid": "69096c62-6e69-4860-b6d7-e374bcd89ea4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-28870", "type": "seen", "source": "https://t.me/cibsecurity/23345", "content": "\u203c CVE-2020-28870 \u203c\n\nIn InoERP 0.7.2, an unauthorized attacker can execute arbitrary code on the server side due to lack of validations in /modules/sys/form_personalization/json_fp.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-10T07:40:59.000000Z"}