Vulnerabilities > Franfinance > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-10-31 CVE-2023-43139 OS Command Injection vulnerability in Franfinance
An issue in franfinance before v.2.0.27 allows a remote attacker to execute arbitrary code via the validation.php, and controllers/front/validation.php components.
network
low complexity
franfinance CWE-78
critical
9.8