CVE-2024-5895 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Users.php delete_users id sql injection

Inserito da Angelo Barbosa | Giu 12, 2024 | CVE

A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. This issue affects the function delete_users of the file /classes/Users.php?f=delete. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2024-5895. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-5895 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Users.php delete_users id sql injection

Post correlati

CVE-2023-50732 | XWiki xwiki-platform-index-tree-macro authorization

CVE-2024-26704 | Linux Kernel up to 6.7.5 ext4_move_extents double free

CVE-2024-22365 | Linux-PAM up to 1.5.3 pam_namespace.so protect_dir denial of service

CVE-2024-2056 | Artica Proxy 4.50 Loopback Interface authentication bypass