CVE-2023-3152

CWE-89SQL Injection3 documents3 sources
Severity
8.8HIGH
EPSS
0.1%
top 82.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Sourcecodester Online Discussion Forum SiteRazormist Online Discussion Forum Site
Timeline
PublishedJun 7

Description

A vulnerability classified as critical has been found in SourceCodester Online Discussion Forum Site 1.0. This affects an unknown part of the file admin\posts\view_post.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-231021 was assigned to this vulnerability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LExploitability: 2.8 | Impact: 3.4

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-hg4r-gx6g-m7fr: A vulnerability classified as critical has been found in SourceCodester Online Discussion Forum Site 12023-06-07
CVEList
SourceCodester Online Discussion Forum Site view_post.php sql injection2023-06-07
CVE-2023-3152 (HIGH CVSS 8.8) | A vulnerability classified as criti | cvebase.io