CVE-2023-5031

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Sep 18, 2023
Updated: May 17, 2024
CWE ID 327

Summary

CVE-2023-5031 is a critical vulnerability affecting OpenRapid RapidCMS 1.3.1. An unknown functionality in the file /admin/article/article-add.php contains an SQL injection vulnerability. By manipulating the argument id, an attacker can exploit this flaw and inject malicious SQL commands remotely. The exploit for this vulnerability (VDB-239875) has been disclosed to the public, increasing the risk of widespread attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share