CVE-2023-7139 | code-projects Client Details System 1.0 HTTP POST Request /admin/regester.php fname/lname/email/contact sql injection

Posted by Angelo Barbosa | Dec 28, 2023 | CVE

A vulnerability has been found in code-projects Client Details System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/regester.php of the component HTTP POST Request Handler. The manipulation of the argument fname/lname/email/contact leads to sql injection.

This vulnerability was named CVE-2023-7139. Access to the local network is required for this attack. Furthermore, there is an exploit available.

CVE-2023-7139 | code-projects Client Details System 1.0 HTTP POST Request /admin/regester.php fname/lname/email/contact sql injection

Related Posts

CVE-2024-2244 | Hitachi Energy Asset Suite EAM prior 9.6.3.13/9.6.4.1 REST Service improper authentication

CVE-2024-3473 | Header Footer Code Manager Pro Plugin up to 1.0.16 on WordPress Message cross site scripting

CVE-2024-7820 | ILC Thickbox Plugin up to 1.0 on WordPress Setting cross-site request forgery

CVE-2023-7042 | Linux Kernel wmi-tlv.c ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev null pointer dereference