CVE-2023-47219

CWE-89SQL Injection3 documents3 sources
Severity
8.8HIGH
EPSS
0.3%
top 43.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Qnap Systems Inc. QumagieQnap Qumagie
Timeline
PublishedJan 5

Description

A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following version: QuMagie 2.2.1 and later

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:NExploitability: 2.1 | Impact: 1.4

Affected Packages2 packages

CVEListV5qnap_systems_inc./qumagie2.2.x2.2.1
NVDqnap/qumagie2.2.0

🔴Vulnerability Details

2
GHSA
GHSA-q6m8-qqcx-ww7p: A SQL injection vulnerability has been reported to affect QuMagie2024-01-05
CVEList
QuMagie2024-01-05
CVE-2023-47219 (HIGH CVSS 8.8) | A SQL injection vulnerability has b | cvebase.io