CVE-2023-1439
Published on: Not Yet Published
Last Modified on: 03/23/2023 03:03:00 PM UTC
Certain versions of Medicine Tracker System from Medicine Tracker System Project contain the following vulnerability:
A vulnerability, which was classified as critical, has been found in SourceCodester Medicine Tracker System 1.0. This issue affects some unknown processing of the file medicines/view_details.php of the component GET Parameter Handler. The manipulation of the argument GET leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-223283.
- CVE-2023-1439 has been assigned by
[email protected] to track the vulnerability - currently rated as CRITICAL severity.
- Affected Vendor/Software:
SourceCodester - Medicine Tracker System version = 1.0
CVSS3 Score: 9.8 - CRITICAL
Attack Vector ⓘ |
Attack Complexity |
Privileges Required |
User Interaction |
---|---|---|---|
NETWORK | LOW | NONE | NONE |
Scope | Confidentiality Impact |
Integrity Impact |
Availability Impact |
UNCHANGED | HIGH | HIGH | HIGH |
CVE References
Description | Tags ⓘ | Link |
---|---|---|
vuldb.com text/plain Inactive LinkNot Archived |
![]() | |
bug_report/SQLi-1.md at main · GodGua/bug_report · GitHub | github.com text/html |
![]() |
vuldb.com text/plain Inactive LinkNot Archived |
![]() |
There are currently no QIDs associated with this CVE
Known Affected Configurations (CPE V2.3)
Type | Vendor | Product | Version | Update | Edition | Language |
---|---|---|---|---|---|---|
Application | Medicine Tracker System Project | Medicine Tracker System | 1.0 | All | All | All |
- cpe:2.3:a:medicine_tracker_system_project:medicine_tracker_system:1.0:*:*:*:*:*:*:*:
No vendor comments have been submitted for this CVE
Social Mentions
Source | Title | Posted (UTC) |
---|---|---|
![]() |
CVE-2023-1439 | SourceCodester Medicine Tracker System 1.0 GET Parameter view_details.php sql injection A vulnerabi… twitter.com/i/web/status/1… | 2023-03-17 07:50:52 |
![]() |
CVE-2023-1439 | 2023-03-17 08:38:32 |