Unrated severityNVD Advisory· Published Dec 14, 2023· Updated Aug 2, 2024

CVE-2023-46348

Description

SQL njection vulnerability in SunnyToo sturls before version 1.1.13, allows attackers to escalate privileges and obtain sensitive information via StUrls::hookActionDispatcher and StUrls::getInstanceId methods.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

SunnyToo/sturlsdescription
SunnyToo/sturlsllm-create
Range: <1.1.13

Patches

Vulnerability mechanics

References

security.friendsofpresta.org/modules/2023/12/07/sturls.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000