cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-1674,https://securityvulnerability.io/vulnerability/CVE-2023-1674,SourceCodester School Registration and Fee System POST Parameter login.php sql injection,"A vulnerability exists in the SourceCodester School Registration and Fee System 1.0, specifically affecting the `login.php` file through the POST Parameter Handler. This issue allows remote attackers to manipulate the `username` parameter, leading to SQL injection. The public disclosure of this vulnerability raises concerns about potential exploitation, emphasizing the need for immediate security awareness and patching. Affected users are urged to review their systems and implement necessary protections to prevent unauthorized access.",SourceCodester,School Registration and Fee System,9.8,CRITICAL,0.002139999996870756,false,,false,false,false,,,false,false,,2023-03-28T21:15:00.000Z,0
CVE-2023-1675,https://securityvulnerability.io/vulnerability/CVE-2023-1675,SourceCodester School Registration and Fee System GET Parameter edit_stud.php sql injection,"A vulnerability has been identified within the SourceCodester School Registration and Fee System version 1.0, specifically in an unknown function of the file /bilal final/edit_stud.php related to the GET Parameter Handler. Malicious manipulation of the 'id' parameter may allow for SQL injection attacks, which can be executed remotely. This security flaw poses a significant risk, as unauthorized access and manipulation of the database could occur. The exploit has been publicly disclosed, increasing the urgency for users to apply necessary patches or mitigate the risk associated with this vulnerability.",SourceCodester,School Registration and Fee System,9.8,CRITICAL,0.0021800000686198473,false,,false,false,false,,,false,false,,2023-03-28T21:15:00.000Z,0