SQL Injection Vulnerability in Dzzoffice v2.01 Network Disk Backend Module
CVE-2023-39853 · MEDIUM Severity
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module.
Learn more about our Cis Benchmark Audit For Microsoft Office.