Lucene search
+L

4 matches found

vulnrichment
vulnrichment
added 2023/04/14 8:0 a.m.7 views

CVE-2023-2039 novel-plus sql injection

A vulnerability was found in novel-plus 3.6.2. It has been rated as critical. This issue affects some unknown processing of the file /author/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. The attack may be initiated remotely. The exploit has been...

6.5CVSS8.9AI score0.00802EPSS
Exploits1References3
cvelist
cvelist
added 2023/04/14 8:0 a.m.23 views

CVE-2023-2039 novel-plus sql injection

A vulnerability was found in novel-plus 3.6.2. It has been rated as critical. This issue affects some unknown processing of the file /author/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. The attack may be initiated remotely. The exploit has been...

6.5CVSS9.1AI score0.00802EPSS
Exploits1References3
cve
cve
added 2023/04/14 8:0 a.m.107 views

CVE-2023-2039

CVE-2023-2039 affects novel-plus 3.6.2 with a SQL injection in the /author/list?limit=10&offset=0&order=desc endpoint caused by unsafely processed sort parameter. Exploitation can be remote; exploits have been disclosed publicly. Multiple connected sources confirm the issue and the affected compo...

8.8CVSS7.7AI score0.00802EPSS
Exploits1References3Affected Software1
osv
osv
added 2023/04/14 8:0 a.m.15 views

CVE-2023-2039 novel-plus sql injection

A vulnerability was found in novel-plus 3.6.2. It has been rated as critical. This issue affects some unknown processing of the file /author/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. The attack may be initiated remotely. The exploit has been...

6.3CVSS6.4AI score0.00802EPSS
Exploits1References5
Rows per page
Query Builder