CVE-2023-0707

Name of the Vulnerable Software and Affected Versions SourceCodester Medical Certificate Generator App version 1.0

Description A critical issue has been found in the function delete record of the file function.php. The manipulation of the argument id leads to SQL injection.

Recommendations For version 1.0, consider disabling the delete record function until a patch is available to prevent SQL injection attacks by manipulating the id argument. Restrict access to the function.php file to minimize the risk of exploitation. Avoid using the id argument in the affected function until the issue is resolved.