A vulnerability has been found in Campcodes Video Sharing Website 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file signup.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-225913 was assigned to this vulnerability.
References
| Link | Resource |
|---|---|
| https://github.com/E1CHO/cve_hub/blob/main/Video%20Sharing%20Website/Video%20Sharing%20Website%20vuln%203.pdf | Exploit Third Party Advisory |
| https://vuldb.com/?ctiid.225913 | Permissions Required Third Party Advisory |
| https://vuldb.com/?id.225913 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
22 Apr 2023, 01:58
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Campcodes Video Sharing Website Project campcodes Video Sharing Website
Campcodes Video Sharing Website Project |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
| CPE | cpe:2.3:a:campcodes_video_sharing_website_project:campcodes_video_sharing_website:1.0:*:*:*:*:*:*:* | |
| References | (MISC) https://github.com/E1CHO/cve_hub/blob/main/Video%20Sharing%20Website/Video%20Sharing%20Website%20vuln%203.pdf - Exploit, Third Party Advisory | |
| References | (MISC) https://vuldb.com/?ctiid.225913 - Permissions Required, Third Party Advisory | |
| References | (MISC) https://vuldb.com/?id.225913 - Third Party Advisory |
14 Apr 2023, 07:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-04-14 07:15
Updated : 2024-05-17 02:22
NVD link : CVE-2023-2035
Mitre link : CVE-2023-2035
JSON object : View
Products Affected
campcodes_video_sharing_website_project
- campcodes_video_sharing_website
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')