SourceCodester Medicine Tracker System improper authentication
CVE-2023-1464
9.8CRITICAL
What is CVE-2023-1464?
A vulnerability was discovered in the SourceCodester Medicine Tracker System version 1.0, where improper authentication exists in the Users.php?f=save_user file. Attackers can exploit this vulnerability by manipulating arguments such as firstname, middlename, lastname, username, and password, allowing for unauthorized access. This vulnerability can be exploited remotely, making it critical for users to address this security flaw to protect sensitive information.
Affected Version(s)
Medicine Tracker System 1.0