SourceCodester Sanitization Management System sql injection
CVE-2022-3868

4.7MEDIUM

Key Information:

Vendor: Sourcecodester
Status: Sanitization Management System
Vendor: CVE Published:; 5 November 2022

Summary

A vulnerability classified as critical has been found in SourceCodester Sanitization Management System. Affected is an unknown function of the file /php-sms/classes/Master.php?f=save_quote. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-213012.

Affected Version(s)

Sanitization Management System

References

https://github.com/x9AD8/Sanitization-Management-System/b...

https://vuldb.com/?id.213012

CVSS V3.1

Score:

4.7

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 5, 2022
Vulnerability Reserved
Nov 5, 2022