CVE-2023-6657

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 10, 2023
Updated: May 17, 2024
CWE ID 89

Summary

CVE-2023-6657 is a critical vulnerability affecting the SourceCodester Simple Student Attendance System 1.0. An unknown part of the file /modals/student_form.php has been identified as the culprit. This issue allows an attacker to manipulate the argument id, resulting in SQL injection. The exploit for this vulnerability has been disclosed to the public, increasing the risk of potential attacks. The Vulnerability Database (VDB) has assigned the identifier VDB-247365 to this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share