7.5
CVSSv3

CVE-2023-40771

Published: 01/09/2023 Updated: 06/09/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0

Vulnerability Summary

SQL injection vulnerability in DataEase v.1.18.9 allows a remote malicious user to obtain sensitive information via a crafted string outside of the blacklist function.

Vulnerable Product Search on Vulmon Subscribe to Product

dataease dataease 1.18.9