PT-2023-30221 · Unknown · Online Matrimonial Project
Published
2023-11-07
·
Updated
2024-01-02
·
CVE-2023-46794
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
Online Matrimonial Project version 1.0
Description
The issue concerns Unauthenticated SQL Injection vulnerabilities. Specifically, the
email parameter in the register() function of the functions.php file is vulnerable.Recommendations
For Online Matrimonial Project version 1.0, consider restricting access to the
register() function until a patch is available. As a temporary workaround, avoid using the email parameter in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Online Matrimonial Project