A vulnerability has been found in SourceCodester Service Provider Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /classes/Master.php?f=save_service of the component HTTP POST Request Handler. The manipulation of the argument name leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-227587.
References
Link | Resource |
---|---|
http://cdn.polowong.top/image-20230427193041378.png | Exploit |
https://vuldb.com/?ctiid.227587 | Permissions Required Third Party Advisory VDB Entry |
https://vuldb.com/?id.227587 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: VulDB
Published: 2023-04-27T14:00:06.340Z
Updated: 2023-10-22T16:02:35.454Z
Reserved: 2023-04-27T13:37:53.193Z
Link: CVE-2023-2344
JSON object: View
NVD Information
Status : Modified
Published: 2023-04-27T14:15:09.240
Modified: 2024-05-17T02:22:51.890
Link: CVE-2023-2344
JSON object: View
Redhat Information
No data.
CWE