CVE-2023-1499

Name of the Vulnerable Software and Affected Versions code-projects Simple Art Gallery version 1.0

Description A critical vulnerability was found in the code-projects Simple Art Gallery. The issue affects an unknown functionality of the file adminHome.php. The manipulation of the reach city argument leads to sql injection. The attack can be launched remotely.

Recommendations For version 1.0, consider disabling the functionality related to the reach city argument in the adminHome.php file until a patch is available. Restrict access to the adminHome.php file to minimize the risk of exploitation. Avoid using the reach city argument in the affected functionality until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.