CVE-2023-26784

SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...

CVE-2023-26784

SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...

CVE-2023-26784

Kirin Fortress Machine v1.7-2020-0610 is affected by a SQL injection in the admin_commonuser endpoint (via /admin.php?controller=admin_commonuser), which can allow an attacker to execute arbitrary code. The NVD reports a critical CVSS v3.1 score (9.8) with network attack vector, no privileges, an...