CVE-2023-0961

Name of the Vulnerable Software and Affected Versions SourceCodester Music Gallery Site version 1.0

Description A critical issue has been found in the file view music details.php of the component GET Request Handler, where the manipulation of the id argument leads to sql injection. This issue can be initiated remotely.

Recommendations For SourceCodester Music Gallery Site version 1.0, consider restricting access to the view music details.php file until a patch is available. As a temporary workaround, avoid using the id argument in the affected GET Request Handler to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.