CVE-2023-1785

Description

A vulnerability was found in SourceCodester Earnings and Expense Tracker App 1.0. It has been classified as critical. Affected is an unknown function of the file manage_user.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-224700.

Related CPE's

aearnings_and_expense_tracker_app_projectearnings_and_expense_tracker_app1.0*******

References

https://github.com/web-zxl/img/blob/main/4.png

ExploitThird Party Advisory

https://vuldb.com/?id.224700

Third Party Advisory

https://vuldb.com/?ctiid.224700

Permissions RequiredThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io