CVE-2023-45123

02 Jan 2024, 16:15

Type	Values Removed	Values Added
Summary	(en) Rejected reason: Duplicate	(en) Rejected reason: It is a duplicate.

---

02 Jan 2024, 15:15

Type	Values Removed	Values Added
Summary	(es) Online Examination System v1.0 es afectado por múltiples vulnerabilidades de inyección SQL autenticadas. El parámetro 'right' del recurso update.php no valida los caracteres recibidos y se envían sin filtrar a la base de datos.
Summary	(en) Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'right' parameter of the update.php resource does not validate the characters received and they are sent unfiltered to the database.	(en) Rejected reason: Duplicate
CWE	CWE-89
CVSS	v2 : unknown v3 : 8.8	v2 : unknown v3 : unknown
References	{'url': 'https://fluidattacks.com/advisories/argerich/', 'tags': ['Exploit', 'Third Party Advisory'], 'source': 'help@fluidattacks.com'} {'url': 'https://projectworlds.in/', 'tags': ['Product'], 'source': 'help@fluidattacks.com'}
CPE	cpe:2.3:a:projectworlds:online_examination_system:1.0:*:*:*:*:*:*:*

---

29 Dec 2023, 13:58

Type	Values Removed	Values Added
CPE		cpe:2.3:a:projectworlds:online_examination_system:1.0:*:*:*:*:*:*:*
Summary		(es) Online Examination System v1.0 es afectado por múltiples vulnerabilidades de inyección SQL autenticadas. El parámetro 'right' del recurso update.php no valida los caracteres recibidos y se envían sin filtrar a la base de datos.
CVSS	v2 : unknown v3 : 9.8	v2 : unknown v3 : 8.8
First Time		Projectworlds Projectworlds online Examination System
References	() https://fluidattacks.com/advisories/argerich/ -	() https://fluidattacks.com/advisories/argerich/ - Exploit, Third Party Advisory
References	() https://projectworlds.in/ -	() https://projectworlds.in/ - Product

---

21 Dec 2023, 17:15

Type	Values Removed	Values Added
New CVE

---