Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Crafter Studio on Linux, MacOS, Windows, x86, ARM, 64 bit allows SQL Injection.This issue affects CrafterCMS v4.0 from 4.0.0 through 4.0.1, and v3.1 from 3.1.0 through 3.1.26.
References
Link | Resource |
---|---|
https://docs.craftercms.org/en/4.0/security/advisory.html#cv-2023021701 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
07 Nov 2023, 04:09
Type | Values Removed | Values Added |
---|---|---|
Summary | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Crafter Studio on Linux, MacOS, Windows, x86, ARM, 64 bit allows SQL Injection.This issue affects CrafterCMS v4.0 from 4.0.0 through 4.0.1, and v3.1 from 3.1.0 through 3.1.26. |
Information
Published : 2023-02-17 18:15
Updated : 2024-02-28 19:51
NVD link : CVE-2023-26020
Mitre link : CVE-2023-26020
CVE.ORG link : CVE-2023-26020
JSON object : View
Products Affected
linux
- linux_kernel
apple
- macos
microsoft
- windows
craftercms
- crafter_cms
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')