/

CVE-2023-1958 Report - Details, Severity, & Advisories

CVE-2023-1958 Report - Details, Severity, & Advisories

Twingate Team

Apr 11, 2024

A critical vulnerability, CVE-2023-1958, has been discovered in SourceCodester Online Computer and Laptop Store 1.0, affecting an unknown part of the file /classes/Master.php?f=delete\\_sub\\_category. This vulnerability, classified as a SQL injection, can be exploited remotely and has been disclosed to the public. Systems running the SourceCodester Online Computer and Laptop Store 1.0 software are at risk. The severity of this vulnerability is rated as 9.8 CRITICAL by NIST and 6.3 MEDIUM by VulDB according to CVSS 3.x Severity and Metrics.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, check if your system is running the SourceCodester Online Computer and Laptop Store 1.0 software. This vulnerability specifically impacts an unknown part of the file /classes/Master.php?f=delete\\_sub\\_category and involves a SQL injection. If your system uses this software, it is at risk. No information about affected Apple product versions is available from the provided sources.

What should I do if I'm affected?

If you're affected by the vulnerability, there are no known countermeasures or patches available. As a precaution, consider replacing the affected software with an alternative product. Stay vigilant and monitor updates for potential fixes in the future.

Is CVE-2023-1958 in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-1958 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog, according to the information available on the NVD page. This critical vulnerability, discovered in SourceCodester Online Computer and Laptop Store 1.0, involves a SQL injection issue and was published on April 8, 2023. There is no known mitigation or required action specified, but it is recommended to replace the affected software with an alternative product.

Weakness enumeration

The Weakness Enumeration for CVE-2023-1958 is classified as CWE-89, which refers to an SQL injection issue that can impact confidentiality, integrity, and availability of the affected system.

For more details

CVE-2023-1958 is a critical vulnerability affecting SourceCodester Online Computer and Laptop Store 1.0, with potential impacts on confidentiality, integrity, and availability. For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

/

CVE-2023-1958 Report - Details, Severity, & Advisories

CVE-2023-1958 Report - Details, Severity, & Advisories

Twingate Team

Apr 11, 2024

A critical vulnerability, CVE-2023-1958, has been discovered in SourceCodester Online Computer and Laptop Store 1.0, affecting an unknown part of the file /classes/Master.php?f=delete\\_sub\\_category. This vulnerability, classified as a SQL injection, can be exploited remotely and has been disclosed to the public. Systems running the SourceCodester Online Computer and Laptop Store 1.0 software are at risk. The severity of this vulnerability is rated as 9.8 CRITICAL by NIST and 6.3 MEDIUM by VulDB according to CVSS 3.x Severity and Metrics.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, check if your system is running the SourceCodester Online Computer and Laptop Store 1.0 software. This vulnerability specifically impacts an unknown part of the file /classes/Master.php?f=delete\\_sub\\_category and involves a SQL injection. If your system uses this software, it is at risk. No information about affected Apple product versions is available from the provided sources.

What should I do if I'm affected?

If you're affected by the vulnerability, there are no known countermeasures or patches available. As a precaution, consider replacing the affected software with an alternative product. Stay vigilant and monitor updates for potential fixes in the future.

Is CVE-2023-1958 in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-1958 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog, according to the information available on the NVD page. This critical vulnerability, discovered in SourceCodester Online Computer and Laptop Store 1.0, involves a SQL injection issue and was published on April 8, 2023. There is no known mitigation or required action specified, but it is recommended to replace the affected software with an alternative product.

Weakness enumeration

The Weakness Enumeration for CVE-2023-1958 is classified as CWE-89, which refers to an SQL injection issue that can impact confidentiality, integrity, and availability of the affected system.

For more details

CVE-2023-1958 is a critical vulnerability affecting SourceCodester Online Computer and Laptop Store 1.0, with potential impacts on confidentiality, integrity, and availability. For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

CVE-2023-1958 Report - Details, Severity, & Advisories

Twingate Team

Apr 11, 2024

A critical vulnerability, CVE-2023-1958, has been discovered in SourceCodester Online Computer and Laptop Store 1.0, affecting an unknown part of the file /classes/Master.php?f=delete\\_sub\\_category. This vulnerability, classified as a SQL injection, can be exploited remotely and has been disclosed to the public. Systems running the SourceCodester Online Computer and Laptop Store 1.0 software are at risk. The severity of this vulnerability is rated as 9.8 CRITICAL by NIST and 6.3 MEDIUM by VulDB according to CVSS 3.x Severity and Metrics.

How do I know if I'm affected?

To determine if you're affected by the vulnerability, check if your system is running the SourceCodester Online Computer and Laptop Store 1.0 software. This vulnerability specifically impacts an unknown part of the file /classes/Master.php?f=delete\\_sub\\_category and involves a SQL injection. If your system uses this software, it is at risk. No information about affected Apple product versions is available from the provided sources.

What should I do if I'm affected?

If you're affected by the vulnerability, there are no known countermeasures or patches available. As a precaution, consider replacing the affected software with an alternative product. Stay vigilant and monitor updates for potential fixes in the future.

Is CVE-2023-1958 in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-1958 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog, according to the information available on the NVD page. This critical vulnerability, discovered in SourceCodester Online Computer and Laptop Store 1.0, involves a SQL injection issue and was published on April 8, 2023. There is no known mitigation or required action specified, but it is recommended to replace the affected software with an alternative product.

Weakness enumeration

The Weakness Enumeration for CVE-2023-1958 is classified as CWE-89, which refers to an SQL injection issue that can impact confidentiality, integrity, and availability of the affected system.

For more details

CVE-2023-1958 is a critical vulnerability affecting SourceCodester Online Computer and Laptop Store 1.0, with potential impacts on confidentiality, integrity, and availability. For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, visit the NVD page or the links below