CVE-2023-48078

2023-11-1600:00:00

mitre

github.com

sql injection

simple crud functionality

vulnerability

arbitrary sql commands

AI Score

8.3

Confidence

Low

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

total

JSON

SQL Injection vulnerability in add.php in Simple CRUD Functionality v1.0 allows attackers to run arbitrary SQL commands via the ‘title’ parameter.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:code-projects:simple_crud_functionality:1.0:*:*:*:*:*:*:*"
    ],
    "vendor": "code-projects",
    "product": "simple_crud_functionality",
    "versions": [
      {
        "status": "affected",
        "version": "1.0"
      }
    ],
    "defaultStatus": "unknown"
  }
]