mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 09:11:28 +00:00
20 lines
761 B
JSON
20 lines
761 B
JSON
{
|
|
"id": "CVE-2023-41262",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2023-10-12T23:15:11.190",
|
|
"lastModified": "2023-10-12T23:15:11.190",
|
|
"vulnStatus": "Received",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer Scrutinizer before 19.3.1. The csvExportReport endpoint action generateCSV is vulnerable to SQL injection through the sorting parameter, allowing an unauthenticated user to execute arbitrary SQL statements in the context of the application's backend database server."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"references": [
|
|
{
|
|
"url": "https://github.com/atredispartners/advisories/blob/master/ATREDIS-2023-0001.md",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |