Unrated severityNVD Advisory· Published Oct 12, 2023· Updated Sep 18, 2024
CVE-2023-41262
CVE-2023-41262
Description
An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer Scrutinizer before 19.3.1. The csvExportReport endpoint action generateCSV is vulnerable to SQL injection through the sorting parameter, allowing an unauthenticated user to execute arbitrary SQL statements in the context of the application's backend database server.
Affected products
2- Plixer/Scrutinizerdescription
- Range: <19.3.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.