CVE-2023-7131 | code-projects Intern Membership Management System 2.0 User Registration /user_registration/ userName sql injection

Posted by Angelo Barbosa | Dec 28, 2023 | CVE

A vulnerability was found in code-projects Intern Membership Management System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /user_registration/ of the component User Registration. The manipulation of the argument userName leads to sql injection.

This vulnerability is handled as CVE-2023-7131. The attack needs to be initiated within the local network. Furthermore, there is an exploit available.

CVE-2023-7131 | code-projects Intern Membership Management System 2.0 User Registration /user_registration/ userName sql injection

Related Posts

CVE-2024-27113 | Simple Online Planning SO Planning prior 1.52.02 Public View Setting information disclosure

CVE-2024-50246 | Linux Kernel up to 6.6.59/6.11.6 ntfs3 alloc_size Privilege Escalation (e91fbb21f248/2fcae4c2014a/c4a8ba334262)

CVE-2024-4458 | Themesflat Addons for Elementor Plugin up to 2.1.1 on WordPress URL cross site scripting

CVE-2023-6466 | Thecosy IceCMS 2.0.1 User Comment /planet cross site scripting