CVE-2024-3255 | SourceCodester Internship Portal Management System 1.0 edit_admin_query.php username/password/name/admin_id sql injection

Inserito da Angelo Barbosa | Apr 3, 2024 | CVE

A vulnerability, which was classified as critical, was found in SourceCodester Internship Portal Management System 1.0. Affected is an unknown function of the file admin/edit_admin_query.php. The manipulation of the argument username/password/name/admin_id leads to sql injection.

This vulnerability is traded as CVE-2024-3255. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-3255 | SourceCodester Internship Portal Management System 1.0 edit_admin_query.php username/password/name/admin_id sql injection

Post correlati

CVE-2024-43443 | OTRS/OTRS Community Edition Process Management Module cross site scripting

CVE-2024-44777 | vTiger CRM 7.4.0 tag cross site scripting

CVE-2023-32727 | Zabbix up to 4.0.49/5.0.38/6.0.22/6.4.7/7.0.0alpha6 icmpping input validation

CVE-2024-2461 | Hitachi Energy FOX61x/XMC20 path traversal