CVE-2023-6464
Severity:
CRITICAL
Type:
CWE-89
SQL Injection
Publication date:
02/12/2023
Last modified:
17/05/2024
Description
A vulnerability was found in SourceCodester User Registration and Login System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /endpoint/add-user.php. The manipulation of the argument user leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-246614 is the identifier assigned to this vulnerability.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Base Score 2.0
6.50
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:remyandrade:user_registration_and_login_system:1.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page