SQL Injection Vulnerability in textMessage Parameter in ChatEngine v.1.0 Allows for Sensitive Information Disclosure

SQL Injection Vulnerability in textMessage Parameter in ChatEngine v.1.0 Allows for Sensitive Information Disclosure

CVE-2023-30325 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

SQL Injection vulnerability in textMessage parameter in /src/chatbotapp/chatWindow.java in wliang6 ChatEngine v.1.0, allows attackers to gain sensitive information.

Learn more about our Web Application Penetration Testing UK.