CVE-2023-1130

Name of the Vulnerable Software and Affected Versions SourceCodester Computer Parts Sales and Inventory System version 1.0

Description A critical issue was found in the system, affecting an unknown part of the file processlogin. The manipulation of the user argument leads to SQL injection. It is possible to initiate the attack remotely.

Recommendations For version 1.0, consider disabling the processlogin file or restricting access to it until a patch is available. Avoid using the user argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.