Unrated severityNVD Advisory· Published May 17, 2023· Updated Jan 22, 2025
CVE-2023-31702
CVE-2023-31702
Description
SQL injection in the View User Profile in MicroWorld eScan Management Console 14.0.1400.2281 allows remote attacker to dump entire database and gain windows XP command shell to perform code execution on database server via GetUserCurrentPwd?UsrId=1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: = 14.0.1400.2281
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.