CVE-2023-37177 | PMB up to 7.4.7 export_z3950.php query sql injection

Posted by Angelo Barbosa | Feb 21, 2024 | CVE

A vulnerability was found in PMB up to 7.4.7. It has been rated as critical. This issue affects some unknown processing of the file /admin/convert/export_z3950.php. The manipulation of the argument query leads to sql injection.

The identification of this vulnerability is CVE-2023-37177. The attack may be initiated remotely. There is no exploit available.

CVE-2023-37177 | PMB up to 7.4.7 export_z3950.php query sql injection

Related Posts

CVE-2024-36819 | MAP-OS up to 4.45.0 Client Name cross site scripting

CVE-2024-28042 | Subnet Solutions PowerSYSTEM Center reliance on uncontrolled component (icsa-24-135-02)

CVE-2024-33978 | Janobe E-Negosyo System 1.0 /index.php category cross site scripting

CVE-2024-21093 | Oracle Database Enterprise Edition up to 19.22/21.13 Java VM information disclosure