CVE-2023-38838

Name of the Vulnerable Software and Affected Versions Kidus Minimati version 1.0.0

Description The issue allows a remote attacker to obtain sensitive information via the "edit.php" component. This is due to a SQL injection vulnerability.

Recommendations For Kidus Minimati version 1.0.0, consider restricting access to the "edit.php" component until a patch is available. As a temporary workaround, avoid using user-supplied input in SQL queries to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.