Arbitrary Code Execution via SQL Injection in PMB v.7.4.7 and Earlier

Arbitrary Code Execution via SQL Injection in PMB v.7.4.7 and Earlier

CVE-2023-38844 · Severity

SQL injection vulnerability in PMB v.7.4.7 and earlier allows a remote attacker to execute arbitrary code via the thesaurus parameter in export_skos.php.

Learn more about our Web Application Penetration Testing UK.