CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-26922

SQL injection vulnerability found in Varisicte matrix-gui v.2 allows a remote attacker to execute arbitrary code via the shell_exect parameter to the \www\pages\matrix-gui-2.0 endpoint.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.7%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/varigit/matrix-gui-v2/issues/1
https://github.com/varigit/matrix-gui-v2/issues/1

Products affected by CVE-2023-26922

Variscite » Matrix-Gui » Version: 2.0

cpe:2.3:a:variscite:matrix-gui:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-26922

Products

Pricing

Contact Us