Lucene search
China National Vulnerability DatabaseCNVD-2023-52851HistoryJun 21, 2023 - 12:00 a.m.
miniCal SQL Injection Vulnerability
2023-06-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
minical
sql injection
pms
vulnerability
database security
illegal commands
0.002 Low
EPSS
Percentile
61.3%
miniCal is miniCal open source an open source PMS. miniCal version 1.0.0 SQL injection vulnerability , the vulnerability stems from the file /booking/show_bookings/ parameter search_query lack of validation of external input SQL statements , an attacker can use this vulnerability to execute illegal SQL commands to steal sensitive database data .
| CPE | Name | Operator | Version |
|---|---|---|---|
| minical minical | eq | 1.0.0 |
Related
cve
cve
CVE-2023-3307
2023-06-18 09:15:09
nvd
nvd
CVE-2023-3307
2023-06-18 09:15:09
prion
prion
Sql injection
2023-06-18 09:15:00
osv
osv
CVE-2023-3307
2023-06-18 09:15:09
cvelist
cvelist
CVE-2023-3307 miniCal sql injection
2023-06-18 08:31:03