CVE-2023-2243

Name of the Vulnerable Software and Affected Versions SourceCodester Complaint Management System version 1.0

Description A critical issue was found in the SourceCodester Complaint Management System, affecting some unknown functionality of the file users/registration.php of the component POST Parameter Handler. The manipulation of the fullname argument leads to sql injection. The attack may be launched remotely.

Recommendations For SourceCodester Complaint Management System version 1.0, consider restricting access to the users/registration.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the fullname argument in the affected POST Parameter Handler until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.