CVE-2023-1963

Name of the Vulnerable Software and Affected Versions PHPGurukul Bank Locker Management System version 1.0

Description A critical issue affects the Search component of the PHPGurukul Bank Locker Management System, specifically in the file index.php. The manipulation of the searchinput argument leads to SQL injection. This issue can be exploited remotely.

Recommendations For PHPGurukul Bank Locker Management System version 1.0, consider disabling the Search component or restricting access to the index.php file until a patch is available. As a temporary workaround, avoid using the searchinput argument in the affected API endpoint. At the moment, there is no information about a newer version that contains a fix for this vulnerability.