← voltar
CVE-2023-1740

SourceCodester Air Cargo Management System GET Parameter manage_user.php sql injection

CVSS 4.7 MEDIUMEPSS 0.7%CWE-89
A vulnerability was found in SourceCodester Air Cargo Management System 1.0. It has been classified as critical. Affected is an unknown function of the file admin/user/manage_user.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-224628.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Produtos afetados
SourceCodester · Air Cargo Management System

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/west9b/bug_report/blob/main/SQLi-1.mdhttps://vuldb.com/?ctiid.224628https://vuldb.com/?id.224628