CVE-2023-46348

Publication date

2023-12-14 00:00:00

Family

mitre

State

PUBLISHED

Description

SQL njection vulnerability in SunnyToo sturls before version 1.1.13, allows attackers to escalate privileges and obtain sensitive information via StUrls::hookActionDispatcher and StUrls::getInstanceId methods.