cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-5589,https://securityvulnerability.io/vulnerability/CVE-2023-5589,SourceCodester Judging Management System login.php sql injection,"A significant SQL injection vulnerability exists in the Judging Management System version 1.0 developed by SourceCodester. This flaw occurs due to insufficient validation of user input in the 'login.php' file, specifically within the 'password' parameter. An attacker can exploit this weakness remotely, allowing unauthorized access to the database and potential manipulation of sensitive data. The public disclosure of this vulnerability increases the urgency for remediation, as it may be leveraged by malicious actors.",SourceCodester,Judging Management System,9.8,CRITICAL,0.0014100000262260437,false,,false,false,false,,,false,false,,2023-10-15T23:15:00.000Z,0
CVE-2023-2108,https://securityvulnerability.io/vulnerability/CVE-2023-2108,SourceCodester Judging Management System edit_contestant.php sql injection,"A vulnerability has been identified in SourceCodester's Judging Management System version 1.0, specifically within the file edit_contestant.php. The flaw arises from inadequate validation of the argument contestant_id, allowing for SQL injection attacks that can be executed remotely. This weakness exposes the system to potential unauthorized data access and manipulation, making it essential for users and administrators to implement mitigating measures. Publicly disclosed exploits could lead to widespread attempts to leverage this vulnerability.",SourceCodester,Judging Management System,9.8,CRITICAL,0.001769999973475933,false,,false,false,false,,,false,false,,2023-04-16T08:15:00.000Z,0
CVE-2023-1556,https://securityvulnerability.io/vulnerability/CVE-2023-1556,SourceCodester Judging Management System summary_results.php sql injection,"A vulnerability exists in the file summary_results.php of the SourceCodester Judging Management System version 1.0 that allows attackers to manipulate the main_event_id argument, leading to SQL injection. This flaw can be exploited remotely, enabling malicious users to execute arbitrary SQL commands against the database. Due to its public disclosure, it poses a significant security risk, necessitating immediate attention from users to mitigate potential exploitation.",SourceCodester,Judging Management System,9.8,CRITICAL,0.002139999996870756,false,,false,false,false,,,false,false,,2023-03-22T11:15:00.000Z,0