Sensitive Information Disclosure in TDSQL Chitu Management Platform v.10.3.19.5.0 via get_db_info function in install.php

CVE-2023-42387 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

An issue in TDSQL Chitu management platform v.10.3.19.5.0 allows a remote attacker to obtain sensitive information via get_db_info function in install.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.