CVE-2023-43014
Asset Management System v1.0 - Authenticated SQL Injection (SQLi)
Asset Management System v1.0 is vulnerable to
an Authenticated SQL Injection vulnerability
on the 'first_name' and 'last_name' parameters
of user.php page, allowing an authenticated
attacker to dump all the contents of the database
contents.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Productos afectados
Asset Management System · Asset Management System¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →