CVE-2023-43132

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Sep 25, 2023

Updated: Sep 26, 2023

CWE ID 89

Summary

CVE-2023-43132 is a newly disclosed vulnerability affecting szvone vmqphp versions below 1.13. This issue permits SQL Injection attacks, enabling unauthorized remote users to gain access to sensitive information, specifically the hash of the administrator password. By exploiting this vulnerability, attackers can potentially take control of the affected system and cause significant damage. It is crucial for users to update their szvone vmqphp installations to a secure version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/suM2GK
https://www.cve.org/CVERecord?id=CVE-2023-43132
https://nvd.nist.gov/vuln/detail/CVE-2023-43132

Back to Vulnerability Database

CVE-2023-43132

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations