CVE-2023-6305

Name of the Vulnerable Software and Affected Versions SourceCodester Free and Open Source Inventory Management System version 1.0

Description A critical issue affects the processing of the file ample/app/ajax/suppliar data.php, where the manipulation of the columns argument leads to SQL injection. This issue can be initiated remotely.

Recommendations For SourceCodester Free and Open Source Inventory Management System version 1.0, consider restricting access to the ample/app/ajax/suppliar data.php file until a patch is available. As a temporary workaround, avoid using the columns argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.