CVE-2020-15052

HIGH

Artica Proxy CE <4.28.030.418 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-15052. PoCs published by pratikshad19.

AI-analyzed exploit summary This repository contains a writeup describing CVE-2020-15052, an SQL injection vulnerability in Artica Proxy before version 4.28.030418 Community Edition. The vulnerability affects input fields such as Netmask, Hostname, and Alias, allowing remote attackers to execute unauthorized SQL queries.

Description

An issue was discovered in Artica Proxy CE before 4.28.030.418. SQL Injection exists via the Netmask, Hostname, and Alias fields.

Exploits (1)

nomisec WRITEUP 1 stars
by pratikshad19 · poc
https://github.com/pratikshad19/CVE-2020-15052

This repository contains a writeup describing CVE-2020-15052, an SQL injection vulnerability in Artica Proxy before version 4.28.030418 Community Edition. The vulnerability affects input fields such as Netmask, Hostname, and Alias, allowing remote attackers to execute unauthorized SQL queries.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Artica Proxy Community Edition before v4.28.030418
No auth needed
Prerequisites: Access to the vulnerable input fields in Artica Proxy
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/pratikshad19/CVE-2020-15052

Scores

CVSS v3 7.5
EPSS 0.0219
EPSS Percentile 80.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-89
Status published
Products (1)
articatech/artica_proxy < 4.28.030.418
Published Jul 20, 2020
Tracked Since Feb 18, 2026