Sunnytoo - Sturls CVE

Filtered by vendor Sunnytoo Subscribe

Filtered by product Sturls

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-46348	1 Sunnytoo	1 Sturls	2024-11-21	N/A	9.8 CRITICAL
SQL njection vulnerability in SunnyToo sturls before version 1.1.13, allows attackers to escalate privileges and obtain sensitive information via StUrls::hookActionDispatcher and StUrls::getInstanceId methods.

Vulnerabilities (CVE)