CVE-2023-2775

CVSS V2 None CVSS V3 None

Description

A vulnerability was found in code-projects Bus Dispatch and Information System 1.0. It has been classified as critical. This affects an unknown part of the file adminHome.php. The manipulation of the argument reach_city leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-229281 was assigned to this vulnerability.

Overview

CVE ID
CVE-2023-2775

Assigner
cna@vuldb.com

Vulnerability Status
Received

Published Version
2023-05-17T20:15:10

Last Modified Date
2023-05-17T20:15:10

Weakness Enumerations

CWE	URL
CWE-89	http://cwe.mitre.org/data/definitions/89.html

References

Reference URL	Reference Tags
https://github.com/mrwwrrhh/Bus_Dispatch_and_Information_System/blob/main/Bus%20Dispatch%20and%20Information%20System%20in%20login_info%20has%20Sql%20injection%20vulnerabilities.pdf
https://vuldb.com/?ctiid.229281
https://vuldb.com/?id.229281

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-2775
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2775

History

Created	Old Value	New Value	Data Type	Notes
2023-05-17 21:01:09				Added to TrackCVE
2023-05-17 21:01:13			Weakness Enumeration	new