1 results (0.024 seconds)

CVSS: 10.0EPSS: 12%CPEs: 1EXPL: 4

06 Nov 2023 — Qualitor through 8.20 allows remote attackers to execute arbitrary code via PHP code in the html/ad/adpesquisasql/request/processVariavel.php gridValoresPopHidden parameter. Qualitor hasta 8.20 permite a atacantes remotos ejecutar código arbitrario mediante código PHP en el parámetro html/ad/adpesquisasql/request/processVariavel.php gridValoresPopHidden. • https://github.com/vnxdtzip/CVE-2023-47253 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •