3 matches found
CVE-2023-38844
SQL injection vulnerability in PMB v.7.4.7 and earlier allows a remote attacker to execute arbitrary code via the thesaurus parameter in exportskos.php...
CVE-2023-38844
SQL injection vulnerability in PMB v.7.4.7 and earlier allows a remote attacker to execute arbitrary code via the thesaurus parameter in exportskos.php...
CVE-2023-38844
CVE-2023-38844 affects PMB (PMB Services/popular PMB library management system) up to v7.4.7. The vulnerability is an SQL injection in export_skos.php via the thesaurus parameter, enabling remote code execution. The CVSS metrics indicate high impact to confidentiality with no impact on integrity ...