Vulnerability CVE-2023-28701


Published: 2023-06-02

Description:
ELITE TECHNOLOGY CORP. Web Fax has a vulnerability of SQL Injection. An unauthenticated remote attacker can inject SQL commands into the input field of the login page to perform arbitrary system commands, disrupt service or terminate service.

Type:

CWE-89

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

 References:
https://www.twcert.org.tw/tw/cp-132-7145-1a0d4-1.html

Copyright 2026, cxsecurity.com

 

Back to Top