CVE-2024-8346 | SourceCodester Computer Laboratory Management System 1.0 SystemSettings.php update_settings_info name sql injection

Inserito da Angelo Barbosa | Ago 30, 2024 | CVE

A vulnerability classified as critical has been found in SourceCodester Computer Laboratory Management System 1.0. Affected is the function update_settings_info of the file /classes/SystemSettings.php?f=update_settings. The manipulation of the argument name leads to sql injection.

This vulnerability is traded as CVE-2024-8346. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-8346 | SourceCodester Computer Laboratory Management System 1.0 SystemSettings.php update_settings_info name sql injection

Post correlati

CVE-2024-34472 | HSC Mailinspector up to 5.2.18 POST Request mliRealtimeEmails.php ordemGrid sql injection

CVE-2023-29096 | BestWebSoft Contact Form to DB Plugin up to 1.7.0 on WordPress sql injection

CVE-2024-41857 | Adobe Illustrator up to 27.9.5/28.6 integer underflow (apsb24-66)

CVE-2024-29872 | Sentrifugo 3.2 add agencyids sql injection