7 matches found
CVE-2023-46348
SQL njection vulnerability in SunnyToo sturls before version 1.1.13, allows attackers to escalate privileges and obtain sensitive information via StUrls::hookActionDispatcher and StUrls::getInstanceId methods...
CVE-2023-46348
SQL njection vulnerability in SunnyToo sturls before version 1.1.13, allows attackers to escalate privileges and obtain sensitive information via StUrls::hookActionDispatcher and StUrls::getInstanceId methods...
CVE-2023-46348
SQL njection vulnerability in SunnyToo sturls before version 1.1.13, allows attackers to escalate privileges and obtain sensitive information via StUrls::hookActionDispatcher and StUrls::getInstanceId methods...
Sql injection
SQL njection vulnerability in SunnyToo sturls before version 1.1.13, allows attackers to escalate privileges and obtain sensitive information via StUrls::hookActionDispatcher and StUrls::getInstanceId methods...
CVE-2023-46348
SunnyToo sturls is affected by an SQL injection in versions prior to 1.1.13. The vulnerability enables privilege escalation and disclosure of sensitive data via the StUrls::hookActionDispatcher and StUrls::getInstanceId methods. Affected component/functionality includes these two methods in the S...
PT-2023-29969 · Unknown · Sunnytoo Sturls
Name of the Vulnerable Software and Affected Versions: SunnyToo sturls versions prior to 1.1.13 Description: The issue allows attackers to escalate privileges and obtain sensitive information. This is achieved via the StUrls::hookActionDispatcher and StUrls::getInstanceId methods. Recommendations...
CVE-2023-46348
SQL njection vulnerability in SunnyToo sturls before version 1.1.13, allows attackers to escalate privileges and obtain sensitive information via StUrls::hookActionDispatcher and StUrls::getInstanceId methods...