CVE-2023-7156
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Dec 29, 2023
Updated: May 17, 2024
CWE ID 89
Summary
CVE-2023-7156 is a newly disclosed critical vulnerability affecting the Campcodes Online College Library System 1.0. The issue lies in the manipulation of the 'category' argument in the 'Search' component's 'index.php' file. This vulnerability results in SQL injection, enabling remote attackers to execute malicious queries on the affected system. The exploit for this vulnerability has been made public, increasing the risk of successful attacks. VDB-249178 is the identifier assigned to this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share