CVE-2023-22583 - SQL Injection in Danfoss AK-EM 100
CVE | CVE-2023-22583 | |||||||||||
Discovered by |
|
|||||||||||
Credits |
|
|||||||||||
Affected products |
|
|||||||||||
Page author | Max van der Horst | |||||||||||
CVSS |
Base score:
10
(CRITICAL) |
|||||||||||
References |
|
|||||||||||
Problem type(s) | CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') | |||||||||||
Last modified | 25 May 2023 17:46 |
Description
The web forms of Danfoss AK-EM 100 allow for SQL injection in the login forms.
JSON version