CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-47609

SQL injection vulnerability in OSS Calendar versions prior to v.2.0.3 allows a remote authenticated attacker to execute arbitrary code or obtain and/or alter the information stored in the database by sending a specially crafted request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.8%

CVSS Severity

CVSS v3 Score 8.8

References

https://jvn.jp/en/jp/JVN67822421/
https://oss-calendar.com/news/20231113/
https://jvn.jp/en/jp/JVN67822421/
https://oss-calendar.com/news/20231113/

Products affected by CVE-2023-47609

Oss-Calendar » Oss Calendar » Version: Any

cpe:2.3:a:oss-calendar:oss_calendar:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-47609

Products

Pricing

Contact Us