CVE-2023-46435: SQL Injection
First published: Thu Oct 26 2023(Updated: )
Sourcecodester Packers and Movers Management System v1.0 is vulnerable to SQL Injection via mpms/?p=services/view_service&id.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oretnom23 Packers And Movers Management System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability type of CVE-2023-46435?
The vulnerability type of CVE-2023-46435 is SQL Injection.
How can an attacker exploit CVE-2023-46435?
An attacker can exploit CVE-2023-46435 by injecting malicious SQL queries through the 'mpms/?p=services/view_service&id' parameter.
What is the severity level of CVE-2023-46435?
The severity level of CVE-2023-46435 is critical with a CVSS score of 9.8.
Which software version is affected by CVE-2023-46435?
The software version affected by CVE-2023-46435 is 1.0 of Oretnom23 Packers And Movers Management System.
How can I fix the SQL Injection vulnerability in Sourcecodester Packers and Movers Management System v1.0?
To fix the SQL Injection vulnerability in Sourcecodester Packers and Movers Management System v1.0, you should sanitize and validate user input, use prepared statements or parameterized queries, and implement strict input validation.
- collector/nvd-api
- agent/type
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/tags
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- vendor/oretnom23
- canonical/oretnom23 packers and movers management system
- version/oretnom23 packers and movers management system/1.0