CVE-2023-7123 – SourceCodester Medicine Tracking System sql injection

https://notcve.org/view.php?id=CVE-2023-7123

A vulnerability, which was classified as critical, has been found in SourceCodester Medicine Tracking System 1.0. This issue affects some unknown processing of the file /classes/Master.php? f=save_medicine. The manipulation of the argument id/name/description leads to sql injection. The attack may be initiated remotely. • https://medium.com/@2839549219ljk/medicine-tracking-system-sql-injection-7b0dde3a82a4 https://vuldb.com/?ctiid.249095 https://vuldb.com/?id.249095 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •