CVE-2023-2205

CVSS V2 None CVSS V3 None

Description

A vulnerability was found in Campcodes Retro Basketball Shoes Online Store 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /function/login.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-226970 is the identifier assigned to this vulnerability.

Overview

CVE ID
CVE-2023-2205

Assigner
cna@vuldb.com

Vulnerability Status
Awaiting Analysis

Published Version
2023-04-21T07:15:07

Last Modified Date
2023-04-24T13:02:28

Weakness Enumerations

CWE	URL
CWE-89	http://cwe.mitre.org/data/definitions/89.html

References

Reference URL	Reference Tags
https://github.com/E1CHO/cve_hub/blob/main/Retro%20Basketball%20Shoes%20Online%20Store/Retro%20Basketball%20Shoes%20Online%20Store%20-%20vuln%201.pdf
https://vuldb.com/?ctiid.226970
https://vuldb.com/?id.226970

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-2205
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2205

History

Created	Old Value	New Value	Data Type	Notes
2023-04-21 08:00:56				Added to TrackCVE
2023-04-21 08:00:57			Weakness Enumeration	new
2023-04-24 14:01:40		2023-04-24T13:02:28	CVE Modified Date	updated
2023-04-24 14:01:40	Received	Awaiting Analysis	Vulnerability Status	updated
2023-04-24 14:01:47			CVSS V3 information	new
2023-04-24 14:01:47			CVSS V2 information	new