Vulnerability CVE-2023-46789
Published: 2023-11-07

Description:
Online Matrimonial Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'filename' attribute of the 'pic1' multipart parameter of the functions.php resource does not validate the characters received and they are sent unfiltered to the database.

 References:
https://fluidattacks.com/advisories/ros
https://projectworlds.in
Copyright 2026, cxsecurity.com

 

Back to Top