CVE-2023-52155

Published: 2024-02-21T22:15Z

Last Modified: 2025-03-25T16:53Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A SQL Injection vulnerability in /admin/sauvegarde/run.php in PMB 7.4.7 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via the sauvegardes variable through the /admin/sauvegarde/run.php endpoint. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt