CVE-2023-39849

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

17 Aug 2023, 20:15

Type Values Removed Values Added
Summary ** DISPUTED ** Pikachu v1.0 was discovered to contain a SQL injection vulnerability via the $username parameter at \inc\function.php. NOTE: this is disputed by multiple third parties who report that the only role of Pikachu is to intentionally implement vulnerabilities for learning purposes; it is never employed for delivering services or functionality to end users. ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
References
  • {'url': 'https://github.com/zhuifengshaonianhanlu/pikachu/blob/master/README.md', 'name': 'https://github.com/zhuifengshaonianhanlu/pikachu/blob/master/README.md', 'tags': [], 'refsource': 'MISC'}
  • {'url': 'https://github.com/zhuifengshaonianhanlu/pikachu', 'name': 'https://github.com/zhuifengshaonianhanlu/pikachu', 'tags': [], 'refsource': 'MISC'}
  • {'url': 'https://github.com/KLSEHB/vulnerability-report/blob/main/Pikachu_CVE-2023-39849', 'name': 'https://github.com/KLSEHB/vulnerability-report/blob/main/Pikachu_CVE-2023-39849', 'tags': [], 'refsource': 'MISC'}

17 Aug 2023, 07:15

Type Values Removed Values Added
References
  • (MISC) https://github.com/zhuifengshaonianhanlu/pikachu/blob/master/README.md -
Summary Pikachu v1.0 was discovered to contain a SQL injection vulnerability via the $username parameter at \inc\function.php. ** DISPUTED ** Pikachu v1.0 was discovered to contain a SQL injection vulnerability via the $username parameter at \inc\function.php. NOTE: this is disputed by multiple third parties who report that the only role of Pikachu is to intentionally implement vulnerabilities for learning purposes; it is never employed for delivering services or functionality to end users.

15 Aug 2023, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-08-15 22:15

Updated : 2024-02-05 00:01


NVD link : CVE-2023-39849

Mitre link : CVE-2023-39849

CVE.ORG link : CVE-2023-39849


JSON object : View

Products Affected

No product.

CWE

No CWE.