CVE-2023-3619

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 11, 2023

Updated: May 17, 2024

CWE ID 787

Summary

CVE-2023-3619 is a critical vulnerability affecting the SourceCodester AC Repair and Services System 1.0. The issue lies within the HTTP POST Request Handler component, specifically the Master.php?f=save_service file. Maliciously crafted input to the id argument can result in SQL injection, enabling remote attackers to manipulate data or even gain unauthorized access to the system. The vulnerability was assigned the identifier VDB-233573.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rvqvzi
https://www.cve.org/CVERecord?id=CVE-2023-3619
https://nvd.nist.gov/vuln/detail/CVE-2023-3619

Back to Vulnerability Database

CVE-2023-3619

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations