CVE-2023-33439: SQL Injection
First published: Fri May 26 2023(Updated: )
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manage_task.php?id=.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Faculty Evaluation System Project Faculty Evaluation System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-33439?
The severity of CVE-2023-33439 is high.
How does the SQL Injection vulnerability occur in Sourcecodester Faculty Evaluation System v1.0?
The SQL Injection vulnerability in Sourcecodester Faculty Evaluation System v1.0 occurs through the /eval/admin/manage_task.php?id= parameter.
What is the affected software version of CVE-2023-33439?
The affected software version of CVE-2023-33439 is 1.0.
How can I fix the SQL Injection vulnerability in Sourcecodester Faculty Evaluation System v1.0?
To fix the SQL Injection vulnerability in Sourcecodester Faculty Evaluation System v1.0, apply the necessary patches or updates provided by the vendor.
What is the Common Weakness Enumeration (CWE) ID associated with CVE-2023-33439?
The Common Weakness Enumeration (CWE) ID associated with CVE-2023-33439 is CWE-89.
- collector/nvd-latest
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/faculty evaluation system project
- canonical/faculty evaluation system project faculty evaluation system
- version/faculty evaluation system project faculty evaluation system/1.0