CVE-2023-2760
CVE-2023-2760 : TapHome core is affected by an SQL injection in the HandleMessageUpdateDevicePropertiesRequest function, exploitable before version 2023.2. Low-privileged users can inject arbitrary SQL into queries, potentially achieving read access to data, with possible limited write access and...