| |
Vulnerability CVE-2023-1506
Published: 2023-03-20
| Description: |
A vulnerability, which was classified as critical, was found in SourceCodester E-Commerce System 1.0. Affected is an unknown function of the file login.php. The manipulation of the argument U_USERNAME leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-223410 is the identifier assigned to this vulnerability. |
Type:
CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))
References: |
https://vuldb.com/?ctiid.223410
https://vuldb.com/?id.223410
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
