Sourcecodester Medicine Tracking System vulnerabilities

CVE-2023-7123 [CRITICAL] CWE-89 CVE-2023-7123: A vulnerability, which was classified as critical, has been found in SourceCodester Medicine Trackin A vulnerability, which was classified as critical, has been found in SourceCodester Medicine Tracking System 1.0. This issue affects some unknown processing of the file /classes/Master.php? f=save_medicine. The manipulation of the argument id/name/description leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed

CVE-2023-7134 [CRITICAL] CWE-24 CVE-2023-7134: A vulnerability was found in SourceCodester Medicine Tracking System 1.0. It has been rated as criti A vulnerability was found in SourceCodester Medicine Tracking System 1.0. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument page leads to path traversal: '../filedir'. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-249137