Lucene search

CVE-2021-23837

🗓️ 15 Jan 2021 07:14:15Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 6 Media mentions👁 64 Views

FlatCore 2.0.0 build 139 allows time-based blind SQL injection via selected_folder parameter in acp interface

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
Prion	Sql injection	15 Jan 202107:15	–	prion
NVD	CVE-2021-23837	15 Jan 202107:15	–	nvd
Cvelist	CVE-2021-23837	15 Jan 202106:27	–	cvelist
RedhatCVE	CVE-2021-23837	22 May 202521:19	–	redhatcve
Packet Storm	flatCore CMS XSS / File Disclosure / SQL Injection	13 Jan 202100:00	–	packetstorm

Nvd

Node

flatcore flatcoreRange≤2.0.0

Source	Link
sec-consult	www.sec-consult.com/vulnerability-lab/
packetstormsecurity	www.packetstormsecurity.com/files/160936/flatCore-CMS-XSS-File-Disclosure-SQL-Injection.html
github	www.github.com/flatCore/flatCore-CMS

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Jan 2021 07:15Current

6.9Medium risk

Vulners AI Score6.9

CVSS24

CVSS36.5

EPSS0.00781

CWE-89