CVE-2023-38844 | PMB up to 7.4.7 export_skos.php thesaurus sql injection

Posted by Angelo Barbosa | Feb 21, 2024 | CVE

A vulnerability classified as critical has been found in PMB up to 7.4.7. Affected is an unknown function of the file export_skos.php. The manipulation of the argument thesaurus leads to sql injection.

This vulnerability is traded as CVE-2023-38844. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-38844 | PMB up to 7.4.7 export_skos.php thesaurus sql injection

Related Posts

CVE-2024-46937 | MFASOFT Secure Authentication Server prior 1.9.040924 get-info-token-properties serial access control

CVE-2024-41624 | Himalaya Xiaoya Nano Smart Speaker 1.6.96 rom_version access control

CVE-2023-7296 | blindsidenetworks BigBlueButton Plugin up to 3.0.0-beta.4 on WordPress moderator code/viewer code cross site scripting

CVE-2024-8986 | grafana-plugin-sdk-go Grafana Plugin SDK up to 0.249.0 insufficiently protected credentials