CVE-2023-7178

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Dec 30, 2023
Updated: May 17, 2024
CWE ID 89

Summary

CVE-2023-7178 is a critical vulnerability affecting the Campcodes Online College Library System 1.0. The issue lies in the processing of the file /admin/book_row.php within the HTTP POST Request Handler component. Manipulation of the id argument results in sql injection, allowing remote attackers to exploit the vulnerability. The exploit has been publicly disclosed and assigned the identifier VDB-249365.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share