CVE-2023-27649

HIGH

Trusted Tools Free Music 2.1.0.47 2.0.0.46 1.9.1.45 1.8.2.43 - SQL Injection via Search History Table

Title source: llm
STIX 2.1

Description

SQL injection vulnerability found in Trusted Tools Free Music v.2.1.0.47, v.2.0.0.46, v.1.9.1.45, v.1.8.2.43 allows a remote attacker to cause a denial of service via the search history table

Scores

CVSS v3 7.5
EPSS 0.0123
EPSS Percentile 65.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-89
Status published
Products (4)
bestools/trusted_tools_free_music 1.8.2.43
bestools/trusted_tools_free_music 1.9.1.45
bestools/trusted_tools_free_music 2.0.0.46
bestools/trusted_tools_free_music 2.1.0.47
Published Apr 14, 2023
Tracked Since Feb 18, 2026