CVE-2023-31702

HIGH 7.2

CVSS Score

7.2

EPSS Score

0.0%

EPSS Percentile

0th

SQL injection in the View User Profile in MicroWorld eScan Management Console 14.0.1400.2281 allows remote attacker to dump entire database and gain windows XP command shell to perform code execution on database server via GetUserCurrentPwd?UsrId=1.

Vendor	n/a
Product	n/a
Published	May 17, 2023
Last Updated	Jan 22, 2025

Stay Ahead of the Next One

Get instant alerts for n/a n/a

Be the first to know when new high vulnerabilities affecting n/a n/a are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

n/a / n/a

n/a

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/sahiloj/CVE-2023-31702/blob/main/README.md packetstormsecurity.com: http://packetstormsecurity.com/files/172545/eScan-Management-Console-14.0.1400.2281-SQL-Injection.html