SourceCodester Simple Membership System delete_member.php sql injection
CVE-2023-4846
7.5HIGH
What is CVE-2023-4846?
A security flaw in the Simple Membership System 1.0 allows an attacker to manipulate parameters in the delete_member.php file, leading to SQL injection vulnerabilities. This manipulation, specifically targeting the mem_id argument, can be exploited remotely, potentially giving attackers unauthorized access to the database. The vulnerability is publicly disclosed, raising concerns about the impact it may have on the security of affected systems.
Affected Version(s)
Simple Membership System 1.0