Profile Field Availability Condition Vulnerability

Profile Field Availability Condition Vulnerability

CVE-2023-28329 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Insufficient validation of profile field availability condition resulted in an SQL injection risk (by default only available to teachers and managers).

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.