CVE-2023-3152 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2023-3152 Interim 1 3 2023-09-21T23:25:33Z current 2023-09-06T23:22:34Z 2023-09-21T23:25:33Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2023-3152 A vulnerability classified as critical has been found in SourceCodester Online Discussion Forum Site 1.0. This affects an unknown part of the file admin\posts\view_post.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-231021 was assigned to this vulnerability. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2023-September/016259.html E-Mail link for SUSE-SU-2023:3710-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Module for Server Applications 15 SP5 SUSE Linux Enterprise Module for Server Applications 15 SP5 SUSE Linux Enterprise Module for Server Applications 15 SP5 openSUSE Leap 15.5 openSUSE Tumbleweed libopenvswitch-3_1-0-3.1.0-15.1 libopenvswitch-3_1-0-3.1.0-150500.3.6.2 libovn-23_03-0-23.03.0-15.1 libovn-23_03-0-23.03.0-150500.3.6.2 openvswitch-3.1.0-15.1 openvswitch-devel-3.1.0-15.1 openvswitch-doc-3.1.0-15.1 openvswitch-ipsec-3.1.0-15.1 openvswitch-pki-3.1.0-15.1 openvswitch-test-3.1.0-15.1 openvswitch-vtep-3.1.0-15.1 openvswitch3-3.1.0-150500.3.6.2 openvswitch3-devel-3.1.0-150500.3.6.2 openvswitch3-doc-3.1.0-150500.3.6.2 openvswitch3-ipsec-3.1.0-150500.3.6.2 openvswitch3-pki-3.1.0-150500.3.6.2 openvswitch3-test-3.1.0-150500.3.6.2 openvswitch3-vtep-3.1.0-150500.3.6.2 ovn-23.03.0-15.1 ovn-central-23.03.0-15.1 ovn-devel-23.03.0-15.1 ovn-doc-23.03.0-15.1 ovn-docker-23.03.0-15.1 ovn-host-23.03.0-15.1 ovn-vtep-23.03.0-15.1 ovn3-23.03.0-150500.3.6.2 ovn3-central-23.03.0-150500.3.6.2 ovn3-devel-23.03.0-150500.3.6.2 ovn3-doc-23.03.0-150500.3.6.2 ovn3-docker-23.03.0-150500.3.6.2 ovn3-host-23.03.0-150500.3.6.2 ovn3-vtep-23.03.0-150500.3.6.2 python3-ovs-3.1.0-15.1 python3-ovs3-3.1.0-150500.3.6.2 libopenvswitch-3_1-0-3.1.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 libovn-23_03-0-23.03.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 openvswitch3-3.1.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 openvswitch3-devel-3.1.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 openvswitch3-ipsec-3.1.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 openvswitch3-pki-3.1.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 openvswitch3-test-3.1.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 openvswitch3-vtep-3.1.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 ovn3-23.03.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 ovn3-central-23.03.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 ovn3-devel-23.03.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 ovn3-docker-23.03.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 ovn3-host-23.03.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 ovn3-vtep-23.03.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 python3-ovs3-3.1.0-150500.3.6.2 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 libopenvswitch-3_1-0-3.1.0-150500.3.6.2 as a component of openSUSE Leap 15.5 libovn-23_03-0-23.03.0-150500.3.6.2 as a component of openSUSE Leap 15.5 openvswitch3-3.1.0-150500.3.6.2 as a component of openSUSE Leap 15.5 openvswitch3-devel-3.1.0-150500.3.6.2 as a component of openSUSE Leap 15.5 openvswitch3-doc-3.1.0-150500.3.6.2 as a component of openSUSE Leap 15.5 openvswitch3-ipsec-3.1.0-150500.3.6.2 as a component of openSUSE Leap 15.5 openvswitch3-pki-3.1.0-150500.3.6.2 as a component of openSUSE Leap 15.5 openvswitch3-test-3.1.0-150500.3.6.2 as a component of openSUSE Leap 15.5 openvswitch3-vtep-3.1.0-150500.3.6.2 as a component of openSUSE Leap 15.5 ovn3-23.03.0-150500.3.6.2 as a component of openSUSE Leap 15.5 ovn3-central-23.03.0-150500.3.6.2 as a component of openSUSE Leap 15.5 ovn3-devel-23.03.0-150500.3.6.2 as a component of openSUSE Leap 15.5 ovn3-doc-23.03.0-150500.3.6.2 as a component of openSUSE Leap 15.5 ovn3-docker-23.03.0-150500.3.6.2 as a component of openSUSE Leap 15.5 ovn3-host-23.03.0-150500.3.6.2 as a component of openSUSE Leap 15.5 ovn3-vtep-23.03.0-150500.3.6.2 as a component of openSUSE Leap 15.5 python3-ovs3-3.1.0-150500.3.6.2 as a component of openSUSE Leap 15.5 libopenvswitch-3_1-0-3.1.0-15.1 as a component of openSUSE Tumbleweed libovn-23_03-0-23.03.0-15.1 as a component of openSUSE Tumbleweed openvswitch-3.1.0-15.1 as a component of openSUSE Tumbleweed openvswitch-devel-3.1.0-15.1 as a component of openSUSE Tumbleweed openvswitch-doc-3.1.0-15.1 as a component of openSUSE Tumbleweed openvswitch-ipsec-3.1.0-15.1 as a component of openSUSE Tumbleweed openvswitch-pki-3.1.0-15.1 as a component of openSUSE Tumbleweed openvswitch-test-3.1.0-15.1 as a component of openSUSE Tumbleweed openvswitch-vtep-3.1.0-15.1 as a component of openSUSE Tumbleweed ovn-23.03.0-15.1 as a component of openSUSE Tumbleweed ovn-central-23.03.0-15.1 as a component of openSUSE Tumbleweed ovn-devel-23.03.0-15.1 as a component of openSUSE Tumbleweed ovn-doc-23.03.0-15.1 as a component of openSUSE Tumbleweed ovn-docker-23.03.0-15.1 as a component of openSUSE Tumbleweed ovn-host-23.03.0-15.1 as a component of openSUSE Tumbleweed ovn-vtep-23.03.0-15.1 as a component of openSUSE Tumbleweed python3-ovs-3.1.0-15.1 as a component of openSUSE Tumbleweed A vulnerability classified as critical has been found in SourceCodester Online Discussion Forum Site 1.0. This affects an unknown part of the file admin\posts\view_post.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-231021 was assigned to this vulnerability. CVE-2023-3152 SUSE Linux Enterprise Module for Server Applications 15 SP5:libopenvswitch-3_1-0-3.1.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:libovn-23_03-0-23.03.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:openvswitch3-3.1.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:openvswitch3-devel-3.1.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:openvswitch3-ipsec-3.1.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:openvswitch3-pki-3.1.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:openvswitch3-test-3.1.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:openvswitch3-vtep-3.1.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:ovn3-23.03.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:ovn3-central-23.03.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:ovn3-devel-23.03.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:ovn3-docker-23.03.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:ovn3-host-23.03.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:ovn3-vtep-23.03.0-150500.3.6.2 SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-ovs3-3.1.0-150500.3.6.2 openSUSE Leap 15.5:libopenvswitch-3_1-0-3.1.0-150500.3.6.2 openSUSE Leap 15.5:libovn-23_03-0-23.03.0-150500.3.6.2 openSUSE Leap 15.5:openvswitch3-3.1.0-150500.3.6.2 openSUSE Leap 15.5:openvswitch3-devel-3.1.0-150500.3.6.2 openSUSE Leap 15.5:openvswitch3-doc-3.1.0-150500.3.6.2 openSUSE Leap 15.5:openvswitch3-ipsec-3.1.0-150500.3.6.2 openSUSE Leap 15.5:openvswitch3-pki-3.1.0-150500.3.6.2 openSUSE Leap 15.5:openvswitch3-test-3.1.0-150500.3.6.2 openSUSE Leap 15.5:openvswitch3-vtep-3.1.0-150500.3.6.2 openSUSE Leap 15.5:ovn3-23.03.0-150500.3.6.2 openSUSE Leap 15.5:ovn3-central-23.03.0-150500.3.6.2 openSUSE Leap 15.5:ovn3-devel-23.03.0-150500.3.6.2 openSUSE Leap 15.5:ovn3-doc-23.03.0-150500.3.6.2 openSUSE Leap 15.5:ovn3-docker-23.03.0-150500.3.6.2 openSUSE Leap 15.5:ovn3-host-23.03.0-150500.3.6.2 openSUSE Leap 15.5:ovn3-vtep-23.03.0-150500.3.6.2 openSUSE Leap 15.5:python3-ovs3-3.1.0-150500.3.6.2 openSUSE Tumbleweed:libopenvswitch-3_1-0-3.1.0-15.1 openSUSE Tumbleweed:libovn-23_03-0-23.03.0-15.1 openSUSE Tumbleweed:openvswitch-3.1.0-15.1 openSUSE Tumbleweed:openvswitch-devel-3.1.0-15.1 openSUSE Tumbleweed:openvswitch-doc-3.1.0-15.1 openSUSE Tumbleweed:openvswitch-ipsec-3.1.0-15.1 openSUSE Tumbleweed:openvswitch-pki-3.1.0-15.1 openSUSE Tumbleweed:openvswitch-test-3.1.0-15.1 openSUSE Tumbleweed:openvswitch-vtep-3.1.0-15.1 openSUSE Tumbleweed:ovn-23.03.0-15.1 openSUSE Tumbleweed:ovn-central-23.03.0-15.1 openSUSE Tumbleweed:ovn-devel-23.03.0-15.1 openSUSE Tumbleweed:ovn-doc-23.03.0-15.1 openSUSE Tumbleweed:ovn-docker-23.03.0-15.1 openSUSE Tumbleweed:ovn-host-23.03.0-15.1 openSUSE Tumbleweed:ovn-vtep-23.03.0-15.1 openSUSE Tumbleweed:python3-ovs-3.1.0-15.1 important 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H