CVE-2023-51978SQL Injection in ART Gallery Management System

CWE-89SQL Injection3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.1%
top 79.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Phpgurukul ART Gallery Management System
Timeline
PublishedJan 12

Description

In PHPGurukul Art Gallery Management System v1.1, "Update Artist Image" functionality of "imageid" parameter is vulnerable to SQL Injection.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

🔴Vulnerability Details

2
CVEList
CVE-2023-51978: In PHPGurukul Art Gallery Management System v12024-01-12
GHSA
GHSA-gg96-3hrr-8jf4: In PHPGurukul Art Gallery Management System v12024-01-12
CVE-2023-51978 — SQL Injection | cvebase