First published: Thu Oct 26 2023(Updated: )
Sourcecodester Packers and Movers Management System v1.0 is vulnerable to SQL Injection via mpms/?p=services/view_service&id.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
=1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability type of CVE-2023-46435 is SQL Injection.
An attacker can exploit CVE-2023-46435 by injecting malicious SQL queries through the 'mpms/?p=services/view_service&id' parameter.
The severity level of CVE-2023-46435 is critical with a CVSS score of 9.8.
The software version affected by CVE-2023-46435 is 1.0 of Oretnom23 Packers And Movers Management System.
To fix the SQL Injection vulnerability in Sourcecodester Packers and Movers Management System v1.0, you should sanitize and validate user input, use prepared statements or parameterized queries, and implement strict input validation.