3 matches found
CVE-2023-22900 Thinking Software Technology Co., Ltd. Efence - SQL Injection
Efence login function has insufficient validation for user input. An unauthenticated remote attacker can exploit this vulnerability to inject arbitrary SQL commands to access, modify or delete database...
CVE-2023-22900 Thinking Software Technology Co., Ltd. Efence - SQL Injection
Efence login function has insufficient validation for user input. An unauthenticated remote attacker can exploit this vulnerability to inject arbitrary SQL commands to access, modify or delete database...
CVE-2023-22900
The CVE is for Thinking Software Technology Co., Ltd. Efence — SQL Injection due to insufficient input validation in the login function. Unauthenticated remote attackers can inject arbitrary SQL commands to access, modify, or delete the database. Relevant details in connected sources indicate Efe...