Security Advisory

CVE-2023-43013

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-28 21:00:07

Last updated 2024-09-23 18:49:40

Assigner Fluid Attacks

State PUBLISHED

Description

Asset Management System v1.0 is vulnerable to an unauthenticated SQL Injection vulnerability on the email parameter of index.php page, allowing an external attacker to dump all the contents of the database contents and bypass the login control.

← Browse all CVEs View on cve.org ↗