CVE-2023-46022

Summary

CVE-2023-46022 is a SQL Injection vulnerability that affects the delete.php file in the Code-Projects Blood Bank 1.0 software. Malicious actors can exploit this weakness by inputting malicious SQL commands through the 'bid' parameter. Successful attacks may allow attackers to delete, modify, or access sensitive data stored in the database. This vulnerability poses a significant risk to data integrity and confidentiality. It is strongly recommended that users of this software upgrade to a patched version as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.