Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Gmarczynski Subscribe
Filtered by product Dynamic Progress Bar
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-40954 1 Gmarczynski 1 Dynamic Progress Bar 2024-11-21 N/A 9.8 CRITICAL
A SQL injection vulnerability in Grzegorz Marczynski Dynamic Progress Bar (aka web_progress) v. 11.0 through 11.0.2, v12.0 through v12.0.2, v.13.0 through v13.0.2, v.14.0 through v14.0.2.1, v.15.0 through v15.0.2, and v16.0 through v16.0.2.1 allows a remote attacker to gain privileges via the recency parameter in models/web_progress.py component.