CVE-2023-45951

Name of the Vulnerable Software and Affected Versions lylme spage version 1.7.0

Description The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the $userip parameter at function.php.

Recommendations For lylme spage version 1.7.0, consider restricting access to the $userip parameter in the function.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the $userip parameter until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.