SourceCodester Earnings and Expense Tracker App index.php information disclosure
CVE-2023-1858
7.5HIGH
What is CVE-2023-1858?
The Earnings and Expense Tracker App by SourceCodester is vulnerable to a significant information disclosure issue that arises within the index.php file. This vulnerability is exploited through manipulation of the 'page' argument, which allows unauthorized access to sensitive information. The attack can be executed remotely, raising concerns about the security of user data and application integrity. It is crucial for users of this application to implement protective measures to mitigate potential exploitation of this vulnerability.
Affected Version(s)
Earnings and Expense Tracker App 1.0