Lucene search
K

4 matches found

NVD
NVD
added 2023/09/28 10:15 p.m.24 views

CVE-2023-43014

Asset Management System v1.0 is vulnerable to an Authenticated SQL Injection vulnerability on the 'firstname' and 'lastname' parameters of user.php page, allowing an authenticated attacker to dump all the contents of the database contents...

8.8CVSS9.1AI score0.00646EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/09/28 9:4 p.m.26 views

CVE-2023-43014 Asset Management System v1.0 - Authenticated SQL Injection (SQLi)

Asset Management System v1.0 is vulnerable to an Authenticated SQL Injection vulnerability on the 'firstname' and 'lastname' parameters of user.php page, allowing an authenticated attacker to dump all the contents of the database contents...

8.8CVSS9.3AI score0.00646EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/09/28 9:4 p.m.10 views

CVE-2023-43014 Asset Management System v1.0 - Authenticated SQL Injection (SQLi)

Asset Management System v1.0 is vulnerable to an Authenticated SQL Injection vulnerability on the 'firstname' and 'lastname' parameters of user.php page, allowing an authenticated attacker to dump all the contents of the database contents...

8.8CVSS8AI score0.00646EPSS
Exploits1References2
CVE
CVE
added 2023/09/28 9:4 p.m.60 views

CVE-2023-43014

CVE-2023-43014 relates to Asset Management System v1.0 with an authenticated SQL Injection in the fields “first_name” and “last_name” on the user.php page. The underlying issue is improper input handling that enables an authenticated attacker to dump the database contents. Documented impact is hi...

8.8CVSS9.1AI score0.00646EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder