CVE-2023-7333

A weakness has been identified in bluelabsio records-mover up to 1.5.4. The affected element is an unknown function of the component Table Object Handler. This manipulation causes sql injection. The attack needs to be launched locally. Upgrading to version 1.6.0 is sufficient to fix this issue. Patch name: 3f8383aa89f45d861ca081e3e9fd2cc9d0b5dfaa. You should upgrade the affected component.
Configurations

No configuration.

History

15 Apr 2026, 00:35

Type Values Removed Values Added
Summary
  • (es) Se ha identificado una debilidad en bluelabsio records-mover hasta 1.5.4. El elemento afectado es una función desconocida del componente Table Object Handler. Esta manipulación causa inyección SQL. El ataque necesita ser lanzado localmente. Actualizar a la versión 1.6.0 es suficiente para solucionar este problema. Nombre del parche: 3f8383aa89f45d861ca081e3e9fd2cc9d0b5dfaa. Debe actualizar el componente afectado.

23 Feb 2026, 09:16

Type Values Removed Values Added
References
  • () https://github.com/bluelabsio/records-mover/ -

07 Jan 2026, 23:15

Type Values Removed Values Added
New CVE

Information

Published : 2026-01-07 23:15

Updated : 2026-06-17 06:52


NVD link : CVE-2023-7333

Mitre link : CVE-2023-7333

CVE.ORG link : CVE-2023-7333


JSON object : View

Products Affected

No product.

CWE
CWE-74

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')