CVE-2023-39806
iCMS bakupdata SQL Injection Vulnerability
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A SQL injection vulnerability exists in the iCMS bakupdata function, allowing unauthenticated attackers to execute arbitrary SQL commands remotely. This could compromise data integrity, availability, and expose sensitive information. Confirm if iCMS instances are affected and assess their internet reachability and busi