Vulnerability — CVE-2023-40771

CVE-2023-40771

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2023-40771
Description:: SQL injection vulnerability in DataEase v.1.18.9 allows a remote attacker to obtain sensitive information via a crafted string outside of the blacklist function.
Last updated date:: 09/06/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/06/2023
Reference url to background: https://github.com/dataease/dataease/issues/5861