CVE-2023-5807

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 27, 2023
Updated: Nov 3, 2023
CWE ID 89

Summary

CVE-2023-5807 is a critical SQL Injection vulnerability affecting the TRtek Software Education Portal before version 3.2023.29. Hackers can exploit this issue by improperly neutralizing special elements used in SQL commands, allowing them to inject malicious code and access sensitive data. This vulnerability poses a significant risk to the confidentiality and integrity of information processed by the Education Portal. Users are strongly advised to upgrade to the latest version to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share