Vulnerabilities > Dmconcept

DATE CVE VULNERABILITY TITLE RISK
2023-10-19 CVE-2023-43986 SQL Injection vulnerability in Dmconcept Configurator 4.9.3
DM Concept configurator before v4.9.4 was discovered to contain a SQL injection vulnerability via the component ConfiguratorAttachment::getAttachmentByToken.
network
low complexity
dmconcept CWE-89
critical
 9.8
9.8