SQL Injection Vulnerability in szvone vmqphp <=1.13 Allows Unauthorized Access to Administrator Password Hash

SQL Injection Vulnerability in szvone vmqphp <=1.13 Allows Unauthorized Access to Administrator Password Hash

CVE-2023-43132 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

szvone vmqphp <=1.13 is vulnerable to SQL Injection. Unauthorized remote users can use sql injection attacks to obtain the hash of the administrator password.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.