4 matches found
CVE-2023-43014
Asset Management System v1.0 is vulnerable to an Authenticated SQL Injection vulnerability on the 'firstname' and 'lastname' parameters of user.php page, allowing an authenticated attacker to dump all the contents of the database contents...
CVE-2023-43014 Asset Management System v1.0 - Authenticated SQL Injection (SQLi)
Asset Management System v1.0 is vulnerable to an Authenticated SQL Injection vulnerability on the 'firstname' and 'lastname' parameters of user.php page, allowing an authenticated attacker to dump all the contents of the database contents...
CVE-2023-43014 Asset Management System v1.0 - Authenticated SQL Injection (SQLi)
Asset Management System v1.0 is vulnerable to an Authenticated SQL Injection vulnerability on the 'firstname' and 'lastname' parameters of user.php page, allowing an authenticated attacker to dump all the contents of the database contents...
CVE-2023-43014
CVE-2023-43014 relates to Asset Management System v1.0 with an authenticated SQL Injection in the fields “first_name” and “last_name” on the user.php page. The underlying issue is improper input handling that enables an authenticated attacker to dump the database contents. Documented impact is hi...