CVE-2023-48049 Information

Description

A SQL injection vulnerability in Cybrosys Techno Solutions Website Blog Search (aka website_search_blog) v. 13.0 through 13.0.1.0.1 allows a remote attacker to execute arbitrary code and to gain privileges via the name parameter in controllers/main.py component.

Reference

https://github.com/luvsn/OdZoo/tree/main/exploits/website_search_blog