SourceCodester Air Cargo Management System GET Parameter update_status.php sql injection
CVE-2023-1564
9.8CRITICAL
What is CVE-2023-1564?
A security flaw has been identified in the Air Cargo Management System 1.0 from SourceCodester, related to the file admin/transactions/update_status.php. This vulnerability allows for SQL injection through manipulation of the 'id' parameter, enabling remote attacks that compromise database integrity. The exploit has been publicly disclosed, exposing systems to potential threats, underscoring the need for immediate remediation to safeguard sensitive data.
Affected Version(s)
Air Cargo Management System 1.0