Unrated severityNVD Advisory· Published Dec 14, 2023· Updated Aug 2, 2024
CVE-2023-47261
CVE-2023-47261
Description
Dokmee ECM 7.4.6 allows remote code execution because the response to a GettingStarted/SaveSQLConnectionAsync /#/gettingstarted request contains a connection string for privileged SQL Server database access, and xp_cmdshell can be enabled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Dokmee/Dokmee ECMdescription
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.