cve/2023/CVE-2023-24775.md

CVE-2023-24775

Description

Funadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \member\Member.php.

POC

Reference

• https://github.com/funadmin/funadmin/issues/9

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/abrahim7112/Vulnerability-checking-program-for-Android
• https://github.com/csffs/CVE-2023-24775-and-CVE-2023-24780
• https://github.com/nomi-sec/PoC-in-GitHub