Lucene search
PRIOn knowledge basePRION:CVE-2023-40954HistoryDec 15, 2023 - 1:15 a.m.
Sql injection
2023-12-1501:15:00
PRIOn knowledge base
www.prio-n.com
2
sql injection
grzegorz marczynski dynamic progress bar
remote attacker
gain privileges
recency parameter
web_progress.py
A SQL injection vulnerability in Grzegorz Marczynski Dynamic Progress Bar (aka web_progress) v. 11.0 through 11.0.2, v12.0 through v12.0.2, v.13.0 through v13.0.2, v.14.0 through v14.0.2.1, v.15.0 through v15.0.2, and v16.0 through v16.0.2.1 allows a remote attacker to gain privileges via the recency parameter in models/web_progress.py component.
Related
osv
osv
CVE-2023-40954
2023-12-15 01:15:07
nvd
nvd
CVE-2023-40954
2023-12-15 01:15:07
cve
cve
CVE-2023-40954
2023-12-15 01:15:07
cvelist
cvelist
CVE-2023-40954
2023-12-15 00:00:00