CVE-2023-52155
PMB 7.4.7 and earlier are affected by a SQL Injection in /admin/sauvegarde/run.php via the sauvegardes parameter. The issue allows remote authenticated attackers to execute arbitrary SQL commands. The vulnerable component is the /admin/sauvegarde/run.php endpoint; root cause and exact vulnerabili...