Vulnerability Bulletins

MSA-23-0017: Minor SQL injection risk on Mnet SSO access control page

System information

Affected software PHP


от Michael Hawkins. A limited SQL injection risk was identified on the Mnet SSO access control page.Severity/Risk:MinorVersions affected:4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versionsVersions fixed:4.2.1, 4.1.4, 4.0.9, 3.11.15 and 3.9.22Reported by:Paul HoldenCVE identifier:CVE-2023-35132Changes (master): issue:MDL-77193 Minor SQL

More info:

Standar resources

Property Value
CVE CVE-2023-35132.

Version history

Version Comments Date
1.0 Advisory issued 2023-08-22
Ministerio de Defensa