CVE-2023-26583

Publication date

2023-10-25 10:02:08

Family

TML

State

PUBLISHED

Description

Unauthenticated SQL injection in the GetCurrentPeriod method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction or modification of all data by unauthenticated attackers.