CVE-2023-26922 Information

Description

SQL injection vulnerability found in Varisicte matrix-gui v.2 allows a remote attacker to execute arbitrary code via the shell_exect parameter to the \www\pages\matrix-gui-2.0 endpoint.

Reference

https://github.com/varigit/matrix-gui-v2/issues/1