A vulnerability classified as critical was found in SourceCodester Lost and Found Information System 1.0. Affected by this vulnerability is an unknown functionality of the file items/index.php. The manipulation of the argument cid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-228781 was assigned to this vulnerability.
References
Link | Resource |
---|---|
https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/Lost-and-Found-Information-System---Multiple-SQL-injections.md | Exploit Third Party Advisory |
https://vuldb.com/?ctiid.228781 | Third Party Advisory |
https://vuldb.com/?id.228781 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: VulDB
Published: 2023-05-11T08:31:04.876Z
Updated: 2023-10-23T05:49:10.727Z
Reserved: 2023-05-11T07:47:16.815Z
Link: CVE-2023-2653
JSON object: View
NVD Information
Status : Modified
Published: 2023-05-11T09:15:09.723
Modified: 2024-05-17T02:23:07.510
Link: CVE-2023-2653
JSON object: View
Redhat Information
No data.
CWE