SourceCodester Automatic Question Paper Generator System GET Parameter manage_user.php sql injection
CVE-2023-1440
8.8HIGH
What is CVE-2023-1440?
A vulnerability has been identified in the SourceCodester Automatic Question Paper Generator System 1.0, specifically within the user management function in the file users/user/manage_user.php. This vulnerability allows an attacker to manipulate the 'id' parameter, leading to SQL injection. The potential for remote exploitation exists, posing significant risks to data integrity and security. The details of this vulnerability have been publicly disclosed, highlighting the urgent need for mitigation strategies.
Affected Version(s)
Automatic Question Paper Generator System 1.0