Medium severity6.5GHSA Advisory· Published Mar 27, 2024· Updated Apr 15, 2026

CVE-2023-47438

Description

SQL Injection vulnerability in Reportico Till 8.1.0 allows attackers to obtain sensitive information or other system information via the project parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
reportico-web/reporticoPackagist	<= 8.1.0	—

Affected products

Reportico Web/ReporticoGHSA
Range: <= 8.1.0
ghsa-coords
pkg:composer/reportico-web/reportico
Range: <= 8.1.0

Patches

Vulnerability mechanics

References

github.com/advisories/GHSA-jjf4-959w-f545ghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2023-47438ghsaADVISORY
github.com/reportico-web/reportico/issues/52nvdWEB

News mentions

No linked articles in our index yet.

cvss	0.423
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000