Key Vulnerability Information CVE ID: CVE-2023-2411 Vulnerability Type: SQL Injection Product: SourceCodester AC Repair and Services System 1.0 Affected File: Affected Parameter: CVSS Meta Temp Score: 6.2 Current Exploit Price: $0-$5k CTI Interest Score: 0.00 Summary: A critical vulnerability has been detected where manipulating the argument leads to SQL injection. Remote exploitation is possible, and an exploit is available. Details: - The vulnerability affects an unknown functionality in . - The issue is classified as critical and impacts confidentiality, integrity, and availability. - The problem relates to CWE-89, which involves constructing SQL commands using externally-influenced input. - The weakness was published on 04/28/2023. - The exploit is available on GitHub as a proof-of-concept and is declared as a public exploit. References CVE: CVE-2023-2411 Exploit available at: github.com Advisory shared at: github.com MITRE ATT&CK technique: T1505