CVE Published: 06/11/2023 |
CVE Updated: 05/09/2024 |
CVE Year: 2023 Source: Patchstack |
Vendor: Daniel Söderström / Sidney van de Stouwe |
Product: Subscribe to Category Status : PUBLISHED
CVE-2023-38382 Description
Improper Neutralization of Special Elements used in an SQL Command (\'SQL Injection\') vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category allows SQL Injection.This issue affects Subscribe to Category: from n/a through 2.7.4.
CWE-ID: CWE-89 CWE Name: CWE-89 Improper Neutralization of Special Elements used in an SQL Command (
SQL Injection
) Source: Daniel Söderström / Sidney van de Stouwe
Common Attack Pattern Enumeration and Classification (CAPEC)