Lucene search

CVE-2023-23162

🗓️ 10 Feb 2023 20:53:15Reported by mitreType

cve🔗 web.nvd.nist.gov👁 36 Views🌐 WEB

Art Gallery Management System v1.0 SQL injection vuln

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
NVD	CVE-2023-23162	10 Feb 202320:15	–	nvd
Prion	Sql injection	10 Feb 202320:15	–	prion
Cvelist	CVE-2023-23162	10 Feb 202300:00	–	cvelist
Exploit DB	Art Gallery Management System Project v1.0 - SQL Injection (cid) Unauthenticated	3 Apr 202300:00	–	exploitdb
0day.today	Art Gallery Management System Project v1.0 - SQL Injection (Unauthenticated) Vulnerability	3 Apr 202300:00	–	zdt
Packet Storm	Art Gallery Management System Project 1.0 SQL Injection	3 Apr 202300:00	–	packetstorm

Nvd

Node

phpgurukul art_gallery_management_systemMatch1.0

Source	Link
github	www.github.com/rahulpatwari/CVE/blob/main/CVE-2023-23162/CVE-2023-23162.txt
packetstormsecurity	www.packetstormsecurity.com/files/171643/Art-Gallery-Management-System-Project-1.0-SQL-Injection.html
phpgurukul	www.phpgurukul.com/projects/Art-Gallery-MS-PHP.zip
phpgurukul	www.phpgurukul.com/art-gallery-management-system-using-php-and-mysql/

Parameter	Position	Path	Description	CWE
cid	query param	/Art-Gallery-MS-PHP/product.php	SQL injection vulnerability via the cid parameter in the product.php endpoint allowing unauthorized access to database information.	CWE-89
artname	query param	/Art-Gallery-MS-PHP/product.php	SQL injection vulnerability via the cid parameter in the product.php endpoint allowing unauthorized access to database information.	CWE-89

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Feb 2023 20:15Current

9.8High risk

Vulners AI Score9.8

CVSS39.8

EPSS0.00489

CWE-89