CVE-2023-2652: SourceCodester Lost and Found Information System sql injection
First published: Thu May 11 2023(Updated: )
A vulnerability classified as critical has been found in SourceCodester Lost and Found Information System 1.0. Affected is an unknown function of the file /classes/Master.php?f=delete_item. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-228780.
Credit: cna@vuldb.com cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oretnom23 Lost And Found Information System | =1.0 | |
| =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-2652?
The severity of CVE-2023-2652 is classified as critical.
What is the affected software of CVE-2023-2652?
The affected software of CVE-2023-2652 is Oretnom23 Lost And Found Information System 1.0.
How does CVE-2023-2652 impact the system?
CVE-2023-2652 allows for remote SQL injection attacks.
How can the vulnerability in CVE-2023-2652 be exploited?
The vulnerability in CVE-2023-2652 can be exploited by manipulating the /classes/Master.php?f=delete_item file to perform SQL injection.
Is there a patch available for CVE-2023-2652?
There is no information available about a patch for CVE-2023-2652 at the moment.
- collector/nvd-index
- agent/author
- agent/type
- agent/first-publish-date
- agent/weakness
- agent/references
- agent/severity
- agent/title
- agent/description
- agent/softwarecombine
- agent/tags
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/oretnom23
- canonical/oretnom23 lost and found information system
- version/oretnom23 lost and found information system/1.0