CVE-2023-3145

Name of the Vulnerable Software and Affected Versions SourceCodester Online Discussion Forum Site version 1.0

Description A critical issue has been found in the software, affecting some unknown functionality of the file classesUsers.php?f=registration. The manipulation of the username argument leads to SQL injection. The attack can be launched remotely. The issue has been publicly disclosed and can be exploited.

Recommendations For version 1.0, consider disabling the registration functionality in the classesUsers.php file until a patch is available. Restrict access to the username argument in the affected file to minimize the risk of exploitation.