CVE-2023-43985 | SunnyToo stblogsearch up to 1.0.0 prepareSearch sql injection

Inserito da Angelo Barbosa | Gen 19, 2024 | CVE

A vulnerability was found in SunnyToo stblogsearch up to 1.0.0. It has been classified as critical. This affects the function StBlogSearchClass::prepareSearch. The manipulation leads to sql injection.

This vulnerability is uniquely identified as CVE-2023-43985. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2023-43985 | SunnyToo stblogsearch up to 1.0.0 prepareSearch sql injection

Post correlati

CVE-2024-4815 | Ruijie RG-UAC up to 20240506 detail.php filename os command injection

CVE-2024-20404 | Cisco Unified Contact Center Enterprise Web-Based Management Interface server-side request forgery (cisco-sa-finesse-ssrf-rfi-Um7wT8Ew)

CVE-2024-29111 | Webvitaly Sitekit Plugin up to 1.6 on WordPress cross site scripting

CVE-2024-34123 | Adobe Premiere Pro up to 23.6.5/24.4.1 untrusted search path (apsb24-46)