CVE-2023-2090 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 GET Parameter view_designation.php id sql injection
A vulnerability classified as critical has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Affected is an unknown function of the file /admin/maintenance/view_designation.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection.
This vulnerability is traded as CVE-2023-2090. It is possible to launch the attack remotely. Furthermore, there is an exploit available.