CVE-2023-38916

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 15, 2023
Updated: Aug 22, 2023
CWE ID 89

Summary

CVE-2023-38916 is a newly identified SQL Injection vulnerability affecting the eVotingSystem-PHP version 1.0. This issue permits a remote attacker to manipulate user input fields, leading to the execution of arbitrary SQL code. This exploit can potentially grant unauthorized access to sensitive data, posing a significant risk to data security and confidentiality. The vulnerability calls for immediate attention from eVotingSystem-PHP users, requiring them to update their software or implement appropriate mitigation measures to protect against potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share