CVE-2023-43640 - SQL Injection in TaxonWorks—How Attackers Can Steal Your Data
If you are a taxonomist or biodiversity scientist, chances are you’ve heard of TaxonWorks. It’s a powerful web-based tool for managing taxonomy, collecting
CVE-2023-43144 - Critical SQL Injection in Projectworlds Assets-management-system-in-php 1. (Step-by-Step Exploit Guide)
Published: June 2024
Severity: HIGH
🚨 What’s the Issue?
A newly discovered vulnerability, CVE-2023-43144, affects the popular open-source asset management system hosted by Projectworlds: assets-management-system-in-php
CVE-2023-31719 - Breaking Down the FUXA ≤ 1.1.12 SQL Injection via /api/signin
*Published: June 2024*
FUXA, an open-source web-based SCADA automation software, allows users to manage their industrial environments. However, versions up to and including 1.1.
CVE-2023-42807 - SQL Injection in Frappe LMS People Page Explained (And How to Fix It)
Frappe LMS is a popular open source learning management system (LMS) for setting up online courses, managing users, and tracking learning progress. It’s widely
CVE-2023-43274 - Breaking Down a SQL Injection Vulnerability in PHPjabbers PHP Shopping Cart 4.2
In September 2023, a critical security vulnerability, identified as CVE-2023-43274, was disclosed for the PHPjabbers PHP Shopping Cart version 4.2. This flaw can allow
Episode
00:00:00
00:00:00