CVE-2023-7139
published 2023-12-28CVE-2023-7139: A vulnerability has been found in code-projects Client Details System 1.0 and classified as problematic. This vulnerability affects unknown code of the file…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A vulnerability has been found in code-projects Client Details System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/regester.php of the component HTTP POST Request Handler. The manipulation of the argument fname/lname/email/contact leads to sql injection. The exploit has been disclosed to the public and may be used. VDB-249142 is the identifier assigned to this vulnerability.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| code-projects | client_details_system | — | — |
| fabian | client_details_system | — | — |
| github.com | argoproj_argo-cd_v2 | >= 2.2.0 < 2.6.15 | 2.6.15 |
| github.com | argoproj_argo-cd_v2 | >= 2.7.0 < 2.7.14 | 2.7.14 |
| github.com | argoproj_argo-cd_v2 | >= 2.8.0 < 2.8.3 | 2.8.3 |