Vulnerability CVE-2023-31847
Published: 2023-05-17

Description:
In davinci 0.3.0-rc after logging in, the user can connect to the mysql malicious server by controlling the data source to read arbitrary files on the client side.

 References:
https://github.com/edp963/davinci/issues/2326
Copyright 2026, cxsecurity.com

 

Back to Top