CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-41443

SQL injection vulnerability in Novel-Plus v.4.1.0 allows a remote attacker to execute arbitrary code via a crafted script to the sort parameter in /sys/menu/list.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.2%

CVSS Severity

CVSS v3 Score 7.2

References

https://github.com/Deng-JunFeng/cve-lists/tree/main/novel-plus/vuln
https://github.com/Deng-JunFeng/cve-lists/tree/main/novel-plus/vuln

Products affected by CVE-2023-41443

Xxyopen » Novel-Plus » Version: 4.1.0

cpe:2.3:a:xxyopen:novel-plus:4.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41443

Products

Pricing

Contact Us