Vulnerability Details CVE-2023-41615
Zoo Management System v1.0 was discovered to contain multiple SQL injection vulnerabilities in the Admin sign-in page via the username and password fields.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.6%
CVSS Severity
CVSS v3 Score 9.8
References
- https://medium.com/%40guravtushar231/sql-injection-in-login-field-a9073780f7e8
- https://phpgurukul.com/student-management-system-using-php-and-mysql/
- https://portswigger.net/web-security/sql-injection
- https://medium.com/%40guravtushar231/sql-injection-in-login-field-a9073780f7e8
- https://phpgurukul.com/student-management-system-using-php-and-mysql/
- https://portswigger.net/web-security/sql-injection
Products affected by CVE-2023-41615
-
cpe:2.3:a:phpgurukul:zoo_management_system:1.0