Skip to content

CVE-2023-41443

SQL injection vulnerability in Novel-Plus v.4.1.0 allows a remote attacker to execute arbitrary code via a crafted script to the sort parameter in /sys/menu/list..This CVE has a CVSS3.1 score of 8.8 and a Base Severity of HIGH.

InfoDetails
CVE IDCVE-2023-41443
CVE StatePUBLISHED
BaseScoreNA
BaseSeverityNA
VectorStringNA
VersionNA

References for CVE-2023-41443 :
https://github.com/Deng-JunFeng/cve-lists/tree/main/novel-plus/vuln

Metric TypeMetric Score
AttackVector(AV)NA
AttackComplexity(AC)NA
PrivilegesRequired(PR)NA
UserInteraction(UI)NA
Scope(S)NA
Confidentiality(C)NA
Availability(A)NA
Integrity(I)NA
Tags: