{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T22:57:39.582","vulnerabilities":[{"cve":{"id":"CVE-2023-45674","sourceIdentifier":"security-advisories@github.com","published":"2023-10-14T00:15:10.143","lastModified":"2024-11-21T08:27:11.377","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Farmbot-Web-App is a web control interface for the Farmbot farm automation platform. An SQL injection vulnerability was found in FarmBot's web app that allows authenticated attackers to extract arbitrary data from its database (including the user table). This issue may lead to Information Disclosure. This issue has been patched in version 15.8.4. Users are advised to upgrade. There are no known workarounds for this issue."},{"lang":"es","value":"Farmbot-Web-App es una interfaz de control web para la plataforma de automatización agrícola Farmbot. Se encontró una vulnerabilidad de inyección SQL en la aplicación web de FarmBot que permite a atacantes autenticados extraer datos arbitrarios de su base de datos (incluida la tabla de usuarios). Este problema puede dar lugar a la divulgación de información. Este problema se solucionó en la versión 15.8.4. Se recomienda a los usuarios que actualicen. No se conocen workarounds para este problema."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:farmbot:farmbot_web_app:*:*:*:*:*:*:*:*","versionEndExcluding":"15.8.4","matchCriteriaId":"83D5FEE4-B492-45E5-BA78-F1F2EAC1A06E"}]}]}],"references":[{"url":"https://github.com/FarmBot/Farmbot-Web-App/security/advisories/GHSA-pgq5-ff74-g7xq","source":"security-advisories@github.com","tags":["Vendor Advisory"]},{"url":"https://github.com/FarmBot/Farmbot-Web-App/security/advisories/GHSA-pgq5-ff74-g7xq","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}