Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Sunnytoo Subscribe
Filtered by product Sturls
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-46348 1 Sunnytoo 1 Sturls 2024-11-21 N/A 9.8 CRITICAL
SQL njection vulnerability in SunnyToo sturls before version 1.1.13, allows attackers to escalate privileges and obtain sensitive information via StUrls::hookActionDispatcher and StUrls::getInstanceId methods.