Unrated severityNVD Advisory· Published Aug 9, 2023· Updated Oct 10, 2024
CVE-2023-37068
CVE-2023-37068
Description
Code-Projects Gym Management System V1.0 allows remote attackers to execute arbitrary SQL commands via the login form, leading to unauthorized access and potential data manipulation. This vulnerability arises due to insufficient validation of user-supplied input in the username and password fields, enabling SQL Injection attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =1.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.