CVE-2023-7096 in Faculty Management Systeminformação

Sumário

de MITRE • 25/12/2023

A flaw has been found in code-projects Faculty Management System 1.0. The affected element is an unknown function of the file /admin/php/crud.php. This manipulation of the argument fieldname/tablename causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

VulDB

Reservar

24/12/2023

Divulgação

25/12/2023

Moderação

aceite

Entrada

VDB-248948

CPE

pronto

CWE

CWE-89 (confirmado)

Exploração

Descarregar

CVSS

9.8 (NVD)

EPSS

0.00069

KEV

não

Atividades

muito baixo

Sector

Government, Insurance, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2023-7096
NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-7096
CVE Details	https://www.cvedetails.com/cve/CVE-2023-7096/

◂ Voltar Visão Geral Próximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!