CVE-2023-3988

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 28, 2023

Updated: May 17, 2024

CWE ID 89

Summary

CVE-2023-3988 is a critical vulnerability affecting Cafe Billing System 1.0. This issue lies in the Order Handler component's file index.php, which contains an unknown functionality. The manipulation of the id argument allows for sql injection attacks, making it remotely exploitable. The vulnerability has been publicly disclosed, and an identifier VDB-235609 has been assigned to it. Hackers can utilize this flaw to gain unauthorized access or modify data, posing a significant risk to affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sI01qD
https://www.cve.org/CVERecord?id=CVE-2023-3988
https://nvd.nist.gov/vuln/detail/CVE-2023-3988

Back to Vulnerability Database

CVE-2023-3988

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations