CVE-2023-43470
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Sep 23, 2023
Updated: Sep 25, 2023
CWE ID 89
Summary
CVE-2023-43470 is a critical SQL injection vulnerability affecting the janobe Online Voting System version 1.0. An attacker can exploit this weakness in the checklogin.php component to inject malicious SQL queries and execute arbitrary code remotely. This issue poses a significant risk to the security and integrity of the online voting system, particularly during election periods. It is essential that users upgrade to the latest version or take immediate measures to patch this vulnerability to prevent potential data breaches or code execution attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share