Vulnerabilities > CVE-2023-42387 - Unspecified vulnerability in Tdsql Chitu Project Tdsql Chitu 10.3.19.5.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

tdsql-chitu-project

NVD

Published: 2023-09-18

Updated: 2024-09-25

Summary

An issue in TDSQL Chitu management platform v.10.3.19.5.0 allows a remote attacker to obtain sensitive information via get_db_info function in install.php.

Vulnerable Configurations

Part	Description	Count
Application	Tdsql_Chitu_Project Tdsql Chitu Project Tdsql Chitu 10.3.19.5.0	1

References

https://github.com/ranhn/TDSQL.git
https://github.com/ranhn/TDSQL