CVE-2023-30323 Information

Description

SQL Injection vulnerability in username field in /src/chatbotapp/chatWindow.java in Payatu ChatEngine v.1.0 allows attackers to gain sensitive information.

Reference

https://github.com/wliang6/ChatEngine/blob/fded8e710ad59f816867ad47d7fc4862f6502f3e/src/chatbotapp/chatWindow.java#L34:L60 https://payatu.com/advisory/sql-injection-in-chatwindow-functionality-in-chatengine-1-0/