Lucene search
MitreCVELIST:CVE-2023-35036HistoryJun 12, 2023 - 12:00 a.m.
CVE-2023-35036
2023-06-1200:00:00
mitre
www.cve.org
6
sql injection
moveit transfer
unauthorized access
database
In Progress MOVEit Transfer before 2021.0.7 (13.0.7), 2021.1.5 (13.1.5), 2022.0.5 (14.0.5), 2022.1.6 (14.1.6), and 2023.0.2 (15.0.2), SQL injection vulnerabilities have been found in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain unauthorized access to MOVEit Transfer’s database. An attacker could submit a crafted payload to a MOVEit Transfer application endpoint that could result in modification and disclosure of MOVEit database content.
Related
cve
cve
CVE-2023-35036
2023-06-12 03:15:09
prion
prion
Sql injection
2023-06-12 03:15:00
nessus
nessus
nvd
nvd
CVE-2023-35036
2023-06-12 03:15:09
attackerkb
attackerkb
CVE-2023-34362
2023-06-02 00:00:00
rapid7blog
rapid7blog
CVE-2023-34362: MOVEit Vulnerability Timeline of Events
2023-06-14 19:10:05
Rapid7 Observed Exploitation of Critical MOVEit Transfer Vulnerability
2023-06-01 15:23:53
thn
thn
CL0P's Ransomware Rampage - Security Measures for 2024
2024-04-09 11:24:00
malwarebytes
malwarebytes
MOVEit discloses THIRD critical vulnerability
2023-06-16 16:30:00
talosblog
talosblog
wallarmlab
wallarmlab
What You Need To Know About MOVEit
2023-06-16 06:05:40
qualysblog
qualysblog
2023 Threat Landscape Year in Review: If Everything Is Critical, Nothing Is
2023-12-19 15:00:00
securelist
securelist
IT threat evolution in Q2 2023. Non-mobile statistics
2023-08-30 10:00:41