CVE-2023-5278

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Published Sep 29, 2023

Updated: Apr 11, 2024

CWE ID 89

Summary

CVE-2023-5278 is a critical vulnerability found in SourceCodester Engineers Online Portal 1.0. The vulnerability exists in the login.php file and allows for remote SQL injection attacks by manipulating the username/password argument. This vulnerability has been publicly disclosed and could be exploited. The affected products include SourceCodester Engineers Online Portal 1.0. To remediate this vulnerability, it is recommended to apply the latest security patches or updates provided by the vendor. This vulnerability poses a potential danger to organizations using the affected software as it could lead to unauthorized access and manipulation of sensitive data stored in the database.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database