CVE-2023-41539: SQL Injection
First published: Wed Aug 30 2023(Updated: )
phpjabbers Business Directory Script 3.2 is vulnerable to SQL Injection via the column parameter.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| phpjabbers Business Directory Script | =3.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-41539?
The severity of CVE-2023-41539 is high with a CVSS score of 7.5.
How does the vulnerability in phpjabbers Business Directory Script 3.2 occur?
The vulnerability in phpjabbers Business Directory Script 3.2 occurs due to SQL Injection via the column parameter.
Which version of phpjabbers Business Directory Script is affected?
Version 3.2 of phpjabbers Business Directory Script is affected by the vulnerability.
How can I fix the SQL Injection vulnerability in phpjabbers Business Directory Script 3.2?
To fix the SQL Injection vulnerability in phpjabbers Business Directory Script 3.2, apply the patch provided by phpjabbers or upgrade to a secure version.
Is there any reference for more information about this vulnerability?
Yes, you can find more information about this vulnerability at the following reference: [https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/phpjabbers/2023/Business-Directory-Script-Version%3A3.2/SQLi](https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/phpjabbers/2023/Business-Directory-Script-Version%3A3.2/SQLi)
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/author
- agent/type
- agent/event
- agent/severity
- agent/weakness
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/phpjabbers
- canonical/phpjabbers business directory script
- version/phpjabbers business directory script/3.2