Vulnerability Details CVE-2023-27649
SQL injection vulnerability found in Trusted Tools Free Music v.2.1.0.47, v.2.0.0.46, v.1.9.1.45, v.1.8.2.43 allows a remote attacker to cause a denial of service via the search history table
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.4%
CVSS Severity
CVSS v3 Score 7.5
References
- https://bestools.group/
- https://github.com/LianKee/SODA/blob/main/CVEs/CVE-2023-27649/CVE%20detail.md
- https://play.google.com/store/apps/details?id=freemusic.download.musicplayer.mp3player
- https://bestools.group/
- https://github.com/LianKee/SODA/blob/main/CVEs/CVE-2023-27649/CVE%20detail.md
- https://play.google.com/store/apps/details?id=freemusic.download.musicplayer.mp3player
Products affected by CVE-2023-27649
-
cpe:2.3:a:bestools:trusted_tools_free_music:1.8.2.43
-
cpe:2.3:a:bestools:trusted_tools_free_music:1.9.1.45
-
cpe:2.3:a:bestools:trusted_tools_free_music:2.0.0.46
-
cpe:2.3:a:bestools:trusted_tools_free_music:2.1.0.47