CVE-2023-7140 | code-projects Client Details System 1.0 /admin/manage-users.php id sql injection

Inserito da Angelo Barbosa | Dic 28, 2023 | CVE

A vulnerability was found in code-projects Client Details System 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/manage-users.php. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2023-7140. Access to the local network is required for this attack to succeed. Furthermore, there is an exploit available.

CVE-2023-7140 | code-projects Client Details System 1.0 /admin/manage-users.php id sql injection

Post correlati

CVE-2021-47105 | Linux Kernel up to 5.15.11 xsk xsk_buff_free buffer overflow (ad6d20da2cfb/afe8a3ba85ec)

CVE-2024-30735 | ROS Kinetic Kame 1 unrestricted upload

CVE-2023-7043 | ESET Endpoint Security unquoted search path

CVE-2024-26654 | Linux Kernel up to 6.9-rc1 ALSA del_timer null pointer dereference (051e0840ffa8)