CVE-2023-23753 Vulnerability Details

  /     /     /  

CVE-2023-23753 Metadata Quick Info

CVE Published: 23/04/2023 | CVE Updated: 04/08/2024 | CVE Year: 2023
Source: Joomla | Vendor: vi-solutions | Product: Visforms Base Package for Joomla 3
Status : PUBLISHED

CVE-2023-23753 Description

The \'Visforms Base Package for Joomla 3\' extension is vulnerable to SQL Injection as concatenation is used to construct an SQL Query. An attacker can interact with the database and could be able to read, modify and delete data on it.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: SQL Injection
Source: vi-solutions

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description: An attacker can interact with the database and could be able to read, modify and delete data on it.


Source: NVD (National Vulnerability Database).

Last added CVEs

▸ CVE-2024-9999 ◂
Discovered: 12/11/2024
Status: PUBLISHED
▸ CVE-2024-9997 ◂
Discovered: 29/10/2024
Status: PUBLISHED
▸ CVE-2024-9996 ◂
Discovered: 29/10/2024
Status: PUBLISHED



Tags:
CVE-2023-23753 Vulnerability Details