CVE-2023-39849 Information

Description

Pikachu v1.0 was discovered to contain a SQL injection vulnerability via the $username parameter at \inc\function.php.

Reference

https://github.com/zhuifengshaonianhanlu/pikachu https://github.com/KLSEHB/vulnerability-report/blob/main/Pikachu_CVE-2023-39849