CVE-2023-7155 | SourceCodester Free and Open Source Inventory Management System 1.0 edit_product.php id sql injection

Inserito da Angelo Barbosa | Dic 28, 2023 | CVE

A vulnerability, which was classified as critical, was found in SourceCodester Free and Open Source Inventory Management System 1.0. This affects an unknown part of the file /ample/app/action/edit_product.php. The manipulation of the argument id leads to sql injection.

This vulnerability is uniquely identified as CVE-2023-7155. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2023-7155 | SourceCodester Free and Open Source Inventory Management System 1.0 edit_product.php id sql injection

Post correlati

CVE-2023-44312 | Apache ServiceComb Service-Center up to 2.1.0 information disclosure

CVE-2024-27376 | Samsung Exynos 1330 slsi_nan_subscribe_get_nl_params heap-based overflow

CVE-2024-6915 | JFrog Artifactory up to 7.90.5 Cache input validation

CVE-2024-21826 | OpenHarmony up to 3.2.4 insecure storage of sensitive information