1. Home
  2. CVE Database
  3. CVE-2023-48078
CRITICAL · 9.8

CVE-2023-48078

SQL Injection vulnerability in add.php in Simple CRUD Functionality v1.0 allows attackers to run arbitrary SQL commands via the 'title' parameter.

Vulnerability Description

SQL Injection vulnerability in add.php in Simple CRUD Functionality v1.0 allows attackers to run arbitrary SQL commands via the 'title' parameter.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
Code-ProjectsSimple Crud Functionality1.0

Related Weaknesses (CWE)

CWE-89

References

FAQ

What is CVE-2023-48078?

CVE-2023-48078 is a vulnerability with a CVSS score of 9.8 (CRITICAL). SQL Injection vulnerability in add.php in Simple CRUD Functionality v1.0 allows attackers to run arbitrary SQL commands via the 'title' parameter.

How severe is CVE-2023-48078?

CVE-2023-48078 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2023-48078?

Check the references section above for vendor advisories and patch information. Affected products include: Code-Projects Simple Crud Functionality.