CVE-2023-1954

Name of the Vulnerable Software and Affected Versions SourceCodester Online Computer and Laptop Store version 1.0

Description A critical issue affects the function save inventory of the file /admin/product/manage.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely.

Recommendations For version 1.0, consider disabling the save inventory function until a patch is available. Restrict access to the /admin/product/manage.php file to minimize the risk of exploitation. Avoid using the argument id in the affected function until the issue is resolved.