CVE-2023-46024
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Nov 14, 2023
Updated: Nov 17, 2023
CWE ID 89
Summary
CVE-2023-46024 is a SQL Injection vulnerability affecting the phpgurukul Teacher Subject Allocation Management System version 1.0. This issue resides in the index.php file, enabling attackers to execute arbitrary SQL commands by manipulating the 'searchdata' parameter. Successful exploitation of this vulnerability grants unauthorized access to sensitive data.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share