CVE-2023-39853

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-39853
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-39853.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-39853
Published
2024-01-06T04:15:08Z
Modified
2024-09-03T04:33:04.279146Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module.

References

Affected packages

Git / github.com/zyx0814/dzzoffice

Affected ranges

Type
GIT
Repo
https://github.com/zyx0814/dzzoffice
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected

Affected versions

1.*

1.3.1

2.*

2.01
2.0beta