CVE-2023-39344

Publication date

2023-08-04 19:49:19

Family

GitHub_M

State

PUBLISHED

Description

social-media-skeleton is an uncompleted social media project. A SQL injection vulnerability in the project allows UNION based injections, which indirectly leads to remote code execution. Commit 3cabdd35c3d874608883c9eaf9bf69b2014d25c1 contains a fix for this issue.