CVE-2023-46797 in Online Matrimonial Projectinformation

Résumé

par MITRE • 08/11/2023

Online Matrimonial Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'name' parameter in the 'register()' function of the functions.php resource does not validate the characters received and they are sent unfiltered to the database.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsable

Fluid Attacks

Réserver

26/10/2023

Divulgation

08/11/2023

Modérer

accepté

Entrée

VDB-244734

CPE

prêt

EPSS

0.00000

KEV

non

Activités

très faible

Sources

Interested in the pricing of exploits?

See the underground prices here!