Lucene search
K

CVE-2023-39796

🗓️ 10 Nov 2023 00:00:00Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 104 Views🌐 WEB

SQL injection in WBCE CMS v1.6.0, CVE-2023-3979

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
0day.today
WBCE 1.6.0 - Unauthenticated SQL injection Vulnerability
12 Apr 202400:00
zdt
ATTACKERKB
CVE-2023-39796
10 Nov 202306:15
attackerkb
Circl
CVE-2023-39796
23 Nov 202314:03
circl
CNNVD
WBCE CMS Security Vulnerability
10 Nov 202300:00
cnnvd
Cvelist
CVE-2023-39796
10 Nov 202300:00
cvelist
Exploit DB
WBCE 1.6.0 - Unauthenticated SQL injection
12 Apr 202400:00
exploitdb
Nuclei
WBCE 1.6.0 - SQL Injection
2 Jul 202609:36
nuclei
NVD
CVE-2023-39796
10 Nov 202306:15
nvd
Packet Storm
WBCE 1.6.0 SQL Injection
15 Apr 202400:00
packetstorm
Prion
Sql injection
10 Nov 202306:15
prion
Rows per page
NVD
Node
wbcewbce_cmsMatch1.6.0
ParameterPositionPathDescriptionCWE
actionrequest body/modules/miniform/ajax_delete_message.phpSQL injection vulnerability in WBCE CMS miniform module allowing unauthenticated SQL injection via DB_RECORD_TABLE parameter in ajax_delete_message.phpCWE-89
DB_RECORD_TABLErequest body/modules/miniform/ajax_delete_message.phpSQL injection vulnerability in WBCE CMS miniform module allowing unauthenticated SQL injection via DB_RECORD_TABLE parameter in ajax_delete_message.phpCWE-89
iRecordIDrequest body/modules/miniform/ajax_delete_message.phpSQL injection vulnerability in WBCE CMS miniform module allowing unauthenticated SQL injection via DB_RECORD_TABLE parameter in ajax_delete_message.phpCWE-89
DB_COLUMNrequest body/modules/miniform/ajax_delete_message.phpSQL injection vulnerability in WBCE CMS miniform module allowing unauthenticated SQL injection via DB_RECORD_TABLE parameter in ajax_delete_message.phpCWE-89
MODULErequest body/modules/miniform/ajax_delete_message.phpSQL injection vulnerability in WBCE CMS miniform module allowing unauthenticated SQL injection via DB_RECORD_TABLE parameter in ajax_delete_message.phpCWE-89
purposerequest body/modules/miniform/ajax_delete_message.phpSQL injection vulnerability in WBCE CMS miniform module allowing unauthenticated SQL injection via DB_RECORD_TABLE parameter in ajax_delete_message.phpCWE-89

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 06:12Current
9.8High risk
Vulners AI Score9.8
CVSS 3.19.8
EPSS0.06096
SSVC
104