CVE-2023-48717

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-48717
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

02 Jan 2024, 16:15

Type Values Removed Values Added
CPE cpe:2.3:a:projectworlds:student_result_management_system:1.0:*:*:*:*:*:*:*
Summary
  • (es) Student Result Management System v1.0 es afectado por múltiples vulnerabilidades de inyección SQL no autenticada. El parámetro 'class_name' del recurso add_classes.php no valida los caracteres recibidos y se envían sin filtrar a la base de datos.
Summary (en) Student Result Management System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'class_name' parameter of the add_classes.php resource does not validate the characters received and they are sent unfiltered to the database. (en) Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVSS v2 : unknown
v3 : 9.8 		v2 : unknown
v3 : unknown
References
  • {'url': 'https://fluidattacks.com/advisories/gilels/', 'tags': ['Exploit', 'Third Party Advisory'], 'source': 'help@fluidattacks.com'}
  • {'url': 'https://projectworlds.in/', 'tags': ['Product'], 'source': 'help@fluidattacks.com'}
CWE CWE-89

29 Dec 2023, 14:04

Type Values Removed Values Added
First Time Projectworlds student Result Management System
Projectworlds
CPE cpe:2.3:a:projectworlds:student_result_management_system:1.0:*:*:*:*:*:*:*
References () https://fluidattacks.com/advisories/gilels/ - () https://fluidattacks.com/advisories/gilels/ - Exploit, Third Party Advisory
References () https://projectworlds.in/ - () https://projectworlds.in/ - Product

22 Dec 2023, 12:18

Type Values Removed Values Added
Summary
  • (es) Student Result Management System v1.0 es afectado por múltiples vulnerabilidades de inyección SQL no autenticada. El parámetro 'class_name' del recurso add_classes.php no valida los caracteres recibidos y se envían sin filtrar a la base de datos.

21 Dec 2023, 21:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-12-21 21:15

Updated : 2024-01-02 16:15

NVD link : CVE-2023-48717

Mitre link : CVE-2023-48717

CVE.ORG link : CVE-2023-48717

JSON object : View

Products Affected

No product.

CWE

No CWE.