1 results (0.003 seconds)
CVSS: 7.2EPSS: 0%CPEs: 5EXPL: 0
CVE-2023-26020 – Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Crafter Studio
https://notcve.org/view.php?id=CVE-2023-26020
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Crafter Studio on Linux, MacOS, Windows, x86, ARM, 64 bit allows SQL Injection.This issue affects CrafterCMS v4.0 from 4.0.0 through 4.0.1, and v3.1 from 3.1.0 through 3.1.26. • https://docs.craftercms.org/en/4.0/security/advisory.html#cv-2023021701 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •