4 matches found
CVE-2023-2039
A vulnerability was found in novel-plus 3.6.2. It has been rated as critical. This issue affects some unknown processing of the file /author/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2023-2039 novel-plus sql injection
A vulnerability was found in novel-plus 3.6.2. It has been rated as critical. This issue affects some unknown processing of the file /author/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2023-2039 novel-plus sql injection
A vulnerability was found in novel-plus 3.6.2. It has been rated as critical. This issue affects some unknown processing of the file /author/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2023-2039
CVE-2023-2039 affects novel-plus 3.6.2 with a SQL injection in the /author/list?limit=10&offset=0&order=desc endpoint caused by unsafely processed sort parameter. Exploitation can be remote; exploits have been disclosed publicly. Multiple connected sources confirm the issue and the affected compo...