CVE-2023-40749: SQL Injection
First published: Mon Aug 28 2023(Updated: )
PHPJabbers Food Delivery Script v3.0 is vulnerable to SQL Injection in the "column" parameter of index.php.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PHPJabbers Food Delivery Script | =3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2023-40749.
What is the severity of CVE-2023-40749?
The severity of CVE-2023-40749 is critical, with a CVSS score of 9.8.
What is affected by CVE-2023-40749?
PHPJabbers Food Delivery Script v3.0 is affected by CVE-2023-40749.
What is the vulnerability description for CVE-2023-40749?
CVE-2023-40749 is a SQL Injection vulnerability in the "column" parameter of index.php in PHPJabbers Food Delivery Script v3.0.
How can I fix CVE-2023-40749?
To fix CVE-2023-40749, make sure to sanitize and validate user inputs before executing SQL queries, and consider using prepared statements or parameterized queries to prevent SQL Injection attacks.
- collector/nvd-api
- collector/nvd-index
- agent/weakness
- agent/type
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/phpjabbers
- canonical/phpjabbers food delivery script
- version/phpjabbers food delivery script/3.0