CVE-2023-45503 | Macrob7 Macs CMS 1.1.4f sql injection

Posted by Angelo Barbosa | Apr 15, 2024 | CVE

A vulnerability has been found in Macrob7 Macs CMS 1.1.4f and classified as critical. This vulnerability affects the function

resetPassword/forgotPasswordProcess/saveUser/saveRole/deleteUser/deleteRole/deleteComment/deleteUser/allowComment/saveRole/forgotPasswordProcess/resetPassword/saveUser/addComment/saveRole/saveUser

. The manipulation leads to sql injection.

This vulnerability was named CVE-2023-45503. The attack can be initiated remotely. There is no exploit available.

CVE-2023-45503 | Macrob7 Macs CMS 1.1.4f sql injection

Related Posts

CVE-2024-33954 | Atanas Yonkov Pliska Plugin up to 0.3.5 on WordPress cross site scripting

CVE-2024-31442 | Redon Hub up to 1.0.1 Command default permission

CVE-2021-47012 | Linux Kernel up to 5.4.118/5.10.36/5.11.20/5.12.3 RDMA siw_alloc_mr use after free

CVE-2023-50775 | Deployment Dashboard Plugin up to 1.0.10 on Jenkins Job cross-site request forgery