2 matches found
CVE-2023-51828
A SQL Injection vulnerability in /admin/convert/export.class.php in PMB 7.4.7 and earlier versions allows remote unauthenticated attackers to execute arbitrary SQL commands via the query parameter in getnextnotice function...
PMB SQL Injection Vulnerability
PMB is a 100% free document management reference tool from the PMB Services team. A SQL injection vulnerability exists in PMB 7.4.7 and earlier versions that originates from allowing an unauthenticated, remote attacker to execute arbitrary SQL commands via the query parameter in the getnextnotice...