SourceCodester Canteen Management System createCategories.php query sql injection
CVE-2023-1461
9.8CRITICAL
What is CVE-2023-1461?
A vulnerability exists in the SourceCodester Canteen Management System 1.0, allowing remote attackers to execute SQL injection via manipulated arguments in the createCategories.php file. The flaw is located in the 'query' function, specifically affecting the 'categoriesStatus' parameter. This could permit unauthorized access to the database, leading to potential data exploitation or disclosure.
Affected Version(s)
Canteen Management System 1.0