2 matches found
CVE-2023-26581 Unauthenticated SQL Injection In IDAttend’s IDWeb Application
Unauthenticated SQL injection in the GetVisitors method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction or modification of all data by unauthenticated attackers...
CVE-2023-26581
The IDWeb application (IDWeb) used by IDAttend is affected: vulnerable in versions 3.1.052 and earlier, via an unauthenticated SQL injection in the GetVisitors method. Root cause is improper handling/exposure of data through GetVisitors, enabling attackers to extract or modify all data. Impact is...