CVE-2023-34581
published 2023-06-12CVE-2023-34581: Sourcecodester Service Provider Management System v1.0 is vulnerable to SQL Injection via the ID parameter in /php-spms/?page=services/view&id=2
PriorityP356critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
3.28%
86.9th percentile
Sourcecodester Service Provider Management System v1.0 is vulnerable to SQL Injection via the ID parameter in /php-spms/?page=services/view&id=2
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| oretnom23 | service_provider_management_system | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
https://github.com/ashikkunjumon/cve-reports/blob/main/README.mdhttps://packetstormsecurity.com/files/172559/Service-Provider-Management-System-1.0-SQL-Injection.htmlhttps://vulners.com/packetstorm/PACKETSTORM:172559https://www.exploit-db.com/exploits/51482https://github.com/ashikkunjumon/cve-reports/blob/main/README.mdhttps://packetstormsecurity.com/files/172559/Service-Provider-Management-System-1.0-SQL-Injection.htmlhttps://vulners.com/packetstorm/PACKETSTORM:172559https://www.exploit-db.com/exploits/51482
2023-06-12
Published