{"id":"CVE-2020-21808","details":"SQL Injection vulnerability in NukeViet CMS 4.0.10 - 4.3.07 via:the topicsid parameter in modules/news/admin/addtotopics.php.","aliases":["GHSA-84gf-rw24-pfqg"],"modified":"2026-05-18T19:08:39.245436Z","published":"2021-07-30T14:15:13.673Z","references":[{"type":"ADVISORY","url":"https://github.com/nukeviet/nukeviet/blob/4.3.08/CHANGELOG.txt#L11"},{"type":"REPORT","url":"https://whitehub.net/submissions/1516"},{"type":"FIX","url":"https://nukeviet.vn/vi/news/Tin-an-ninh/huong-dan-fix-loi-bao-mat-nukeviet-4-va-module-shops-612.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/nukeviet/nukeviet","events":[{"introduced":"f9c10f356679868d77328b36588a4bd8511327c0"},{"last_affected":"8db5af73a9d90fb6bdfbb83206390b617ab6a32c"}],"database_specific":{"extracted_events":[{"introduced":"4.0.10"},{"last_affected":"4.3.07"}],"cpe":"cpe:2.3:a:nukeviet:nukeviet:*:*:*:*:*:*:*:*","source":"CPE_FIELD"}}],"versions":["4.3.07","4.3.06","4.3.05","4.3.04","4.3.03","4.3.02","4.3.00","4.2.02","4.1.02","4.1.01","4.0.26","4.0.18","4.0.22","4.0.21","4.0.17","4.0.16","4.0.15","4.0.14","4.0.13","4.0.12","4.0.11","4.0.10"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-21808.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}