First published: Wed Oct 25 2023(Updated: )
SQL Injection vulnerability in PHPGurukul Nipah virus (NiV) " Testing Management System v.1.0 allows a remote attacker to escalate privileges via a crafted request to the new-user-testing.php endpoint.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
=1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-46584 is a SQL Injection vulnerability in PHPGurukul Nipah Virus (NiV) Testing Management System v.1.0.
CVE-2023-46584 allows a remote attacker to escalate privileges by exploiting a SQL Injection vulnerability in the new-user-testing.php endpoint of PHPGurukul Nipah Virus Testing Management System v.1.0.
CVE-2023-46584 has a severity rating of critical (9.8).
To fix the SQL Injection vulnerability, apply the latest patch or update provided by PHPGurukul or the vendor.
CWE-89 is a common weakness enumeration identifier for SQL Injection vulnerabilities.