Vulnerability CVE-2023-4449


Published: 2023-08-21

Description:
A vulnerability was found in SourceCodester Free and Open Source Inventory Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /index.php?page=member. The manipulation of the argument columns[0][data] leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-237570 is the identifier assigned to this vulnerability.

Type:

CWE-89

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

 References:
https://github.com/Jacky-Y/vuls/blob/main/README.md
https://vuldb.com/?id.237570
https://vuldb.com/?ctiid.237570

Copyright 2026, cxsecurity.com

 

Back to Top