SourceCodester Online Graduate Tracer System add_acc.php sql injection
CVE-2023-1040
9.8CRITICAL
What is CVE-2023-1040?
A security issue has been identified in the SourceCodester Online Graduate Tracer System, specifically within the file tracking/admin/add_acc.php. This vulnerability enables attackers to manipulate the 'id' parameter, leading to a SQL injection that can be executed remotely. As the exploit is now public, it is critical for users to apply necessary security measures to safeguard their systems against potential attacks.
Affected Version(s)
Online Graduate Tracer System 1.0