CVE-2023-46024

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Nov 14, 2023
Updated: Nov 17, 2023
CWE ID 89

Summary

CVE-2023-46024 is a SQL Injection vulnerability affecting the phpgurukul Teacher Subject Allocation Management System version 1.0. This issue resides in the index.php file, enabling attackers to execute arbitrary SQL commands by manipulating the 'searchdata' parameter. Successful exploitation of this vulnerability grants unauthorized access to sensitive data.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share