CVE-2023-1475

Name of the Vulnerable Software and Affected Versions SourceCodester Canteen Management System version 1.0

Description A critical issue has been found in the SourceCodester Canteen Management System. This issue affects the function query of the file createuser.php. The manipulation of the argument uemail leads to sql injection. The attack may be initiated remotely.

Recommendations For version 1.0, as a temporary workaround, consider restricting access to the createuser.php file until a patch is available. Avoid using the uemail argument in the affected function query until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.