CVE-2023-43470

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 23, 2023
Updated: Sep 25, 2023
CWE ID 89

Summary

CVE-2023-43470 is a critical SQL injection vulnerability affecting the janobe Online Voting System version 1.0. An attacker can exploit this weakness in the checklogin.php component to inject malicious SQL queries and execute arbitrary code remotely. This issue poses a significant risk to the security and integrity of the online voting system, particularly during election periods. It is essential that users upgrade to the latest version or take immediate measures to patch this vulnerability to prevent potential data breaches or code execution attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share