CVE-2023-39378

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Sep 27, 2023

CWE ID 89

Summary

CVE-2023-39378 is an SQL injection vulnerability affecting SiberianCMS. An unauthenticated user can exploit this weakness (CWE-89) by introducing malicious SQL commands, potentially gaining unauthorized access to sensitive data or even taking control of the affected system. This vulnerability poses a serious risk and requires immediate attention and remediation. It is strongly recommended that users update their SiberianCMS installation as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Siberian CMS

Affected Vendors

Siberiancms

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sKgQI6
https://www.cve.org/CVERecord?id=CVE-2023-39378
https://nvd.nist.gov/vuln/detail/CVE-2023-39378

Back to Vulnerability Database