CVE-2023-4199
published 2023-08-07CVE-2023-4199: A vulnerability, which was classified as critical, was found in SourceCodester Inventory Management System 1.0. This affects an unknown part of the file…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
A vulnerability, which was classified as critical, was found in SourceCodester Inventory Management System 1.0. This affects an unknown part of the file catagory_data.php. The manipulation of the argument columns[1][data] leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-236289 was assigned to this vulnerability.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mayurik | inventory_management_system | — | — |
| sourcecodester | inventory_management_system | — | — |
| vmware | open-vm-tools | >= 0 < 2:9.4.0-1280544-5ubuntu6.4+esm1 | 2:9.4.0-1280544-5ubuntu6.4+esm1 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
osv6.3MEDIUM