VWE-2020-5795 Viewing Source [template]Vulnerability | aka= | severity=High | difficulty=Normal | description=MySQL Injection. A user can execute arbitrary MySQL queries by leveraging a flaw in a book's Manage Chapters form. | platform= | lite=no | issueid= | discover-date=April 9, 2020 | patch-date=May 7, 2020 | patches=4.1.0 RC 2 Patch Level 2 4.1.0 RC 1 Patch Level 3 4.0.28 Patch Level 3 4.0.27 Patch Level 6 4.0.26 Patch Level 8 | workaround= [/template] 448 characters