Best POS Management System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /kruxton/manage_user.php.
References
Link | Resource |
---|---|
https://www.sourcecodester.com/php/16127/best-pos-management-system-php.html | Product |
https://github.com/xiumulty/CVE/blob/main/best%20pos%20management%20system%20v1.0/sql%20in%20manage_user.php.md | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2023-03-09 13:15
Updated : 2023-03-12 20:51
NVD link : CVE-2023-27204
Mitre link : CVE-2023-27204
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Products Affected
best_pos_management_system_project
- best_pos_management_system