• info
• discussion
• exploit
• solution
• references

OneOrZero AIMS Security Bypass and SQL Injection Vulnerabilities

OneOrZero AIMS is prone to a security-bypass vulnerability and an SQL-injection vulnerability.

An attacker can exploit these issues to bypass certain security restrictions, perform unauthorized actions, bypass filtering, and modify the logic of SQL queries.

OneOrZero AIMS 2.7.0 is affected; other versions may also be affected.