← Back to CVE List

CVE-2023-0686

Published: 2023-02-06T20:15Z
Last Modified: 2024-11-21T07:37Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been classified as critical. This affects the function update_cart of the file /oews/classes/Master.php?f=update_cart of the component HTTP POST Request Handler. The manipulation of the argument cart_id leads to sql injection. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The identifier VDB-220245 was assigned to this vulnerability. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt