CVE-2023-6312 | SourceCodester Loan Management System 1.0 Users Page deleteUser.php delete_user user_id sql injection

Posted by Angelo Barbosa | Nov 26, 2023 | CVE

A vulnerability was found in SourceCodester Loan Management System 1.0. It has been classified as critical. Affected is the function delete_user of the file deleteUser.php of the component Users Page. The manipulation of the argument user_id leads to sql injection.

This vulnerability is traded as CVE-2023-6312. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2023-6312 | SourceCodester Loan Management System 1.0 Users Page deleteUser.php delete_user user_id sql injection

Related Posts

CVE-2024-10737 | Codezips Free Exam Hall Seating Management System 1.0 /teacher.php email sql injection

CVE-2024-41605 | Foxit PDF Reader 2024.2.2.25170 FoxitPDFReaderUpdater.exe information disclosure

CVE-2023-5108 | Easy Newsletter Signups Plugin up to 1.0.4 on WordPress sql injection

CVE-2023-40038 | Arris DG860A/DG1670A WPA2 PSK predictable state