MOVEit Transfer Critical Vulnerability (May 2023) - Progress Community
community.progress.com/s/article/MOVEit-Transfer-Critical-Vulnerability-31May2023
1 Users
0 Comments
2 Highlights
0 Notes
Tags
Top Highlights
a SQL injection vulnerability has been found in the MOVEit Transfer web application that could allow an un-authenticated attacker to gain unauthorized access to MOVEit Transfer's database
Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database in addition to executing SQL statements that alter or delete database elements
Ready to highlight and find good content?
Glasp is a social web highlighter that people can highlight and organize quotes and thoughts from the web, and access other like-minded people’s learning.