CVE-2023-6311 | SourceCodester Loan Management System 1.0 Loan Type Page delete_ltype.php delete_ltype ltype_id sql injection

Inserito da Angelo Barbosa | Nov 26, 2023 | CVE

A vulnerability was found in SourceCodester Loan Management System 1.0 and classified as critical. This issue affects the function delete_ltype of the file delete_ltype.php of the component Loan Type Page. The manipulation of the argument ltype_id leads to sql injection.

The identification of this vulnerability is CVE-2023-6311. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2023-6311 | SourceCodester Loan Management System 1.0 Loan Type Page delete_ltype.php delete_ltype ltype_id sql injection

Post correlati

CVE-2024-40488 | Kashipara Live Membership System 1.0 /delete_members.php cross-site request forgery

CVE-2024-36220 | Adobe Experience Manager up to 6.5.20 Link cross site scripting (apsb24-28)

CVE-2024-47223 | Mitel MiCollab up to 9.8.1.201 AWV sql injection (misa-2024-0028)

CVE-2024-2073 | SourceCodester Block Inserter for Dynamic Content 1.0 view_post.php id sql injection