cve/CVE-2023-41364.md at main - cve - 临风笛

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

579 B

Raw Permalink Blame History

CVE-2023-41364

Description

In tine through 2023.01.14.325, the sort parameter of the /index.php endpoint allows SQL Injection.

POC

Reference

https://herolab.usd.de/security-advisories/usd-2023-0002/

Github

No PoCs found on GitHub currently.