CVE-2023-7144

🗓️ 29 Dec 2023 01:00:04Reported by VulDBType

Critical SQL injection vulnerability in gopeak MasterLab up to 3.3.1

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-7144	29 Dec 202302:26	–	circl
CNNVD	Sven gopeak masterlab security breach	29 Dec 202300:00	–	cnnvd
Cvelist	CVE-2023-7144 gopeak MasterLab HTTP POST Request Feature.php sqlInject sql injection	29 Dec 202301:00	–	cvelist
EUVD	EUVD-2023-59327	3 Oct 202520:07	–	euvd
NVD	CVE-2023-7144	29 Dec 202301:15	–	nvd
OSV	CVE-2023-7144	29 Dec 202301:15	–	osv
Prion	Sql injection	29 Dec 202301:15	–	prion
Positive Technologies	PT-2023-32905 · Unknown · Gopeak Masterlab	28 Dec 202300:00	–	ptsecurity
Vulnrichment	CVE-2023-7144 gopeak MasterLab HTTP POST Request Feature.php sqlInject sql injection	29 Dec 202301:00	–	vulnrichment

NVD

Vulners

Node

masterlab masterlabRange≤3.3.10

[
  {
    "vendor": "gopeak",
    "product": "MasterLab",
    "versions": [
      {
        "version": "3.3.0",
        "status": "affected"
      },
      {
        "version": "3.3.1",
        "status": "affected"
      },
      {
        "version": "3.3.2",
        "status": "affected"
      },
      {
        "version": "3.3.3",
        "status": "affected"
      },
      {
        "version": "3.3.4",
        "status": "affected"
      },
      {
        "version": "3.3.5",
        "status": "affected"
      },
      {
        "version": "3.3.6",
        "status": "affected"
      },
      {
        "version": "3.3.7",
        "status": "affected"
      },
      {
        "version": "3.3.8",
        "status": "affected"
      },
      {
        "version": "3.3.9",
        "status": "affected"
      },
      {
        "version": "3.3.10",
        "status": "affected"
      }
    ],
    "modules": [
      "HTTP POST Request Handler"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
note	www.note.zhaoj.in/share/4HDWrBHGCf9e

21 Nov 2024 08:45Current

7.5High risk

Vulners AI Score7.5

CVSS 3.16.3 - 9.8

CVSS 25.8

CVSS 36.3

EPSS0.00111

SSVC

CWE-89