CVE-2023-50842
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Dec 28, 2023
Updated: Jan 4, 2024
CWE ID 89
Summary
CVE-2023-50842 is an SQL injection vulnerability affecting Matthew Fries MF Gig Calendar from version n/a through 1.2.1. An attacker can exploit this issue by introducing malicious SQL commands, leading to unauthorized data access or modification. The vulnerability arises due to improper neutralization of special elements used in SQL commands. This type of vulnerability can pose a significant risk to the confidentiality and integrity of affected systems. It is crucial for users to upgrade to a patched version as soon as possible to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share