CVE-2023-46956
Severity CVSS v4.0:
Pending analysis
Type:
CWE-89
SQL Injection
Publication date:
30/11/2023
Last modified:
15/10/2024
Description
SQL injection vulnerability in Packers and Movers Management System v.1.0 allows a remote attacker to execute arbitrary code via crafted payload to the /mpms/admin/?page=user/manage_user&id file.
Impact
Base Score 3.x
7.20
Severity 3.x
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:oretnom23:packers_and_movers_management_system:1.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page