2 matches found
CVE-2023-35851
SUNNET WMPro portal's FAQ function has insufficient validation for user input. An unauthenticated remote attacker can inject arbitrary SQL commands to obtain sensitive information via a database...
PT-2023-25345 · Unknown · Sunnet Wmpro Portal
Name of the Vulnerable Software and Affected Versions: SUNNET WMPro portal affected versions not specified Description: The SUNNET WMPro portal's FAQ function has insufficient validation for user input, allowing an unauthenticated remote attacker to inject arbitrary SQL commands and obtain...