Profile Field Availability Condition Vulnerability
CVE-2023-28329 · HIGH Severity
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Insufficient validation of profile field availability condition resulted in an SQL injection risk (by default only available to teachers and managers).
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.