CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-34756

bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability via the cid parameter at admin/index.php?mode=settings&page=charset&action=edit.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.332

EPSS Ranking 96.7%

CVSS Severity

CVSS v3 Score 9.8

References

https://ndmcyb.hashnode.dev/bloofox-v0521-was-discovered-to-contain-many-sql-injection-vulnerability
https://ndmcyb.hashnode.dev/bloofox-v0521-was-discovered-to-contain-many-sql-injection-vulnerability

Products affected by CVE-2023-34756

Bloofox » Bloofoxcms » Version: 0.5.2.1

cpe:2.3:a:bloofox:bloofoxcms:0.5.2.1
Apple » Macos » Version: N/A

cpe:2.3:o:apple:macos:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34756

Products

Pricing

Contact Us