CVE-2023-7146 gopeak MasterLab HTTP POST Request Feature.php sqlInjectDelete sql injection

🗓️ 29 Dec 2023 02:00:05Reported by VulDBType

Critical SQL injection vulnerability in gopeak MasterLab 3.3.10 HTTP POST Request Handler

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-7146	29 Dec 202303:26	–	circl
CNNVD	Sven gopeak masterlab SQL Injection Vulnerability	29 Dec 202300:00	–	cnnvd
CVE	CVE-2023-7146	29 Dec 202302:00	–	cve
EUVD	EUVD-2023-59329	3 Oct 202520:07	–	euvd
NVD	CVE-2023-7146	29 Dec 202302:15	–	nvd
Prion	Sql injection	29 Dec 202302:15	–	prion
Positive Technologies	PT-2023-32907 · Gopeak · Gopeak Masterlab	28 Dec 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-7146	23 May 202502:30	–	redhatcve
Vulnrichment	CVE-2023-7146 gopeak MasterLab HTTP POST Request Feature.php sqlInjectDelete sql injection	29 Dec 202302:00	–	vulnrichment

[
  {
    "vendor": "gopeak",
    "product": "MasterLab",
    "versions": [
      {
        "version": "3.3.0",
        "status": "affected"
      },
      {
        "version": "3.3.1",
        "status": "affected"
      },
      {
        "version": "3.3.2",
        "status": "affected"
      },
      {
        "version": "3.3.3",
        "status": "affected"
      },
      {
        "version": "3.3.4",
        "status": "affected"
      },
      {
        "version": "3.3.5",
        "status": "affected"
      },
      {
        "version": "3.3.6",
        "status": "affected"
      },
      {
        "version": "3.3.7",
        "status": "affected"
      },
      {
        "version": "3.3.8",
        "status": "affected"
      },
      {
        "version": "3.3.9",
        "status": "affected"
      },
      {
        "version": "3.3.10",
        "status": "affected"
      }
    ],
    "modules": [
      "HTTP POST Request Handler"
    ]
  }
]

Source	Link
note	www.note.zhaoj.in/share/jRqEcVBTsZh4
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

13 Feb 2024 07:27Current

10High risk

Vulners AI Score10

CVSS 25.8

CVSS 3.16.3

CVSS 36.3

EPSS0.0065

CWE-89