CVE-2023-7142 | code-projects Client Details System 1.0 /admin/clientview.php ID sql injection

Inserito da Angelo Barbosa | Dic 28, 2023 | CVE

A vulnerability was found in code-projects Client Details System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/clientview.php. The manipulation of the argument ID leads to sql injection.

This vulnerability is known as CVE-2023-7142. The attack can only be done within the local network. Furthermore, there is an exploit available.

CVE-2023-7142 | code-projects Client Details System 1.0 /admin/clientview.php ID sql injection

Post correlati

CVE-2024-42619 | Pligg CMS 2.0.2 domain_management.php cross-site request forgery

CVE-2024-25521 | RuvarOA 6.01/12.01 get_company.aspx txt_keyword sql injection

CVE-2024-3105 | Woody Code Snippets Plugin up to 2.5.0 on WordPress Privilege Escalation

CVE-2024-3728 | wpdevteam Essential Addons for Elementor Plugin up to 5.9.15 on WordPress Filterable Gallery / Interactive Circle Widgets cross site scripting (ID 3075644)