/

CVE-2023-1963 Report - Details, Severity, & Advisories

CVE-2023-1963 Report - Details, Severity, & Advisories

Twingate Team

May 9, 2024

A critical vulnerability, CVE-2023-1963, has been discovered in the PHPGurukul Bank Locker Management System 1.0, affecting the Search component's index.php file. This vulnerability allows for SQL injection attacks, compromising the confidentiality, integrity, and availability of the affected systems. Systems running the PHPGurukul Bank Locker Management System 1.0 are at risk, and technical details, as well as a public exploit, are already known. The severity of this vulnerability is rated as 9.8 CRITICAL by NIST and 6.3 MEDIUM by VulDB.

How do I know if I'm affected?

If you're using PHPGurukul Bank Locker Management System 1.0, you may be affected by the CVE-2023-1963 vulnerability. This issue involves the manipulation of the 'search input' argument in the index.php file of the Search component, leading to SQL injection. To determine if you're affected, check if your system is running this specific version of the software and using the Search functionality. No information about affected Apple product versions is available.

What should I do if I'm affected?

If you're affected by the this vulnerability, it's crucial to take action. First, confirm your system is running PHPGurukul Bank Locker Management System 1.0 and using the Search functionality. Next, consider updating your system or replacing the affected software with a secure alternative. Stay vigilant and monitor for any updates or patches to address this issue.

Is this in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-1963 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog, according to the information available on the NVD page. This critical vulnerability, found in PHPGurukul Bank Locker Management System 1.0, involves a SQL injection issue in the search functionality. Users are advised to update their systems or replace the affected software with a secure alternative to mitigate the risk.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as CWE-89 involves an SQL injection issue in the PHPGurukul Bank Locker Management System 1.0, affecting the Search component's index.php file.

For more details

For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, refer to the NVD or the links provided below.

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

/

CVE-2023-1963 Report - Details, Severity, & Advisories

CVE-2023-1963 Report - Details, Severity, & Advisories

Twingate Team

May 9, 2024

A critical vulnerability, CVE-2023-1963, has been discovered in the PHPGurukul Bank Locker Management System 1.0, affecting the Search component's index.php file. This vulnerability allows for SQL injection attacks, compromising the confidentiality, integrity, and availability of the affected systems. Systems running the PHPGurukul Bank Locker Management System 1.0 are at risk, and technical details, as well as a public exploit, are already known. The severity of this vulnerability is rated as 9.8 CRITICAL by NIST and 6.3 MEDIUM by VulDB.

How do I know if I'm affected?

If you're using PHPGurukul Bank Locker Management System 1.0, you may be affected by the CVE-2023-1963 vulnerability. This issue involves the manipulation of the 'search input' argument in the index.php file of the Search component, leading to SQL injection. To determine if you're affected, check if your system is running this specific version of the software and using the Search functionality. No information about affected Apple product versions is available.

What should I do if I'm affected?

If you're affected by the this vulnerability, it's crucial to take action. First, confirm your system is running PHPGurukul Bank Locker Management System 1.0 and using the Search functionality. Next, consider updating your system or replacing the affected software with a secure alternative. Stay vigilant and monitor for any updates or patches to address this issue.

Is this in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-1963 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog, according to the information available on the NVD page. This critical vulnerability, found in PHPGurukul Bank Locker Management System 1.0, involves a SQL injection issue in the search functionality. Users are advised to update their systems or replace the affected software with a secure alternative to mitigate the risk.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as CWE-89 involves an SQL injection issue in the PHPGurukul Bank Locker Management System 1.0, affecting the Search component's index.php file.

For more details

For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, refer to the NVD or the links provided below.

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

CVE-2023-1963 Report - Details, Severity, & Advisories

Twingate Team

May 9, 2024

A critical vulnerability, CVE-2023-1963, has been discovered in the PHPGurukul Bank Locker Management System 1.0, affecting the Search component's index.php file. This vulnerability allows for SQL injection attacks, compromising the confidentiality, integrity, and availability of the affected systems. Systems running the PHPGurukul Bank Locker Management System 1.0 are at risk, and technical details, as well as a public exploit, are already known. The severity of this vulnerability is rated as 9.8 CRITICAL by NIST and 6.3 MEDIUM by VulDB.

How do I know if I'm affected?

If you're using PHPGurukul Bank Locker Management System 1.0, you may be affected by the CVE-2023-1963 vulnerability. This issue involves the manipulation of the 'search input' argument in the index.php file of the Search component, leading to SQL injection. To determine if you're affected, check if your system is running this specific version of the software and using the Search functionality. No information about affected Apple product versions is available.

What should I do if I'm affected?

If you're affected by the this vulnerability, it's crucial to take action. First, confirm your system is running PHPGurukul Bank Locker Management System 1.0 and using the Search functionality. Next, consider updating your system or replacing the affected software with a secure alternative. Stay vigilant and monitor for any updates or patches to address this issue.

Is this in CISA’s Known Exploited Vulnerabilities Catalog?

The CVE-2023-1963 vulnerability is not listed in CISA's Known Exploited Vulnerabilities Catalog, according to the information available on the NVD page. This critical vulnerability, found in PHPGurukul Bank Locker Management System 1.0, involves a SQL injection issue in the search functionality. Users are advised to update their systems or replace the affected software with a secure alternative to mitigate the risk.

Weakness enumeration

The weakness enumeration for this vulnerability is categorized as CWE-89 involves an SQL injection issue in the PHPGurukul Bank Locker Management System 1.0, affecting the Search component's index.php file.

For more details

For a comprehensive understanding of this vulnerability, including its description, severity, technical details, and known affected software configurations, refer to the NVD or the links provided below.