Vulnerability Details CVE-2023-5269
A vulnerability was found in SourceCodester Best Courier Management System 1.0. It has been classified as critical. Affected is an unknown function of the file parcel_list.php of the component GET Parameter Handler. The manipulation of the argument id/s leads to sql injection. The exploit has been disclosed to the public and may be used.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.2%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 5.2
References
- https://github.com/E1CHO/cve_hub/blob/main/Best%20courier%20management%20system/Best%20courier%20management%20system%20project%20in%20php%20-%20vuln%201.pdf
- https://vuldb.com/?ctiid.240882
- https://vuldb.com/?id.240882
- https://vuldb.com/?submit.212108
- https://www.sourcecodester.com/
- https://github.com/E1CHO/cve_hub/blob/main/Best%20courier%20management%20system/Best%20courier%20management%20system%20project%20in%20php%20-%20vuln%201.pdf
- https://vuldb.com/?ctiid.240882
- https://vuldb.com/?id.240882
Products affected by CVE-2023-5269
-
cpe:2.3:a:mayurik:best_courier_management_system:1.0