CVE: CVE-2023-3148

Descrizione: A vulnerability was found in SourceCodester Online Discussion Forum Site 1.0 and classified as critical. This issue affects some unknown processing of the file admin\posts\manage_post.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-231017 was assigned to this vulnerability.

Vettore di attacco CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Riferimenti esterni

• https://vuldb.com/?id.231017
• https://vuldb.com/?ctiid.231017
• https://github.com/Peanut886/Vulnerability/blob/main/webray.com.cn/Online%20Discussion%20Forum%20Site%20-%20multiple%20vulnerabilities.md#6sql-injection-vulnerability-in-adminpostsmanage_postphp

Prodotti interessati

• SourceCodester – Online Discussion Forum Site

Relazioni con altri prodotti

Produttore:SourceCodester
Prodotto: Online Discussion Forum Site
Anno: 2023
CWE: CWE-89
CVSS: 0.0

Ulteriori risorse disponibili

• Vulnerabilità scoperte nello stesso anno (2023)