CVE-2024-8347 | SourceCodester Computer Laboratory Management System 1.0 Master.php delete_record id sql injection

Inserito da Angelo Barbosa | Ago 30, 2024 | CVE

A vulnerability classified as critical was found in SourceCodester Computer Laboratory Management System 1.0. Affected by this vulnerability is the function delete_record of the file /classes/Master.php?f=delete_record. The manipulation of the argument id leads to sql injection.

This vulnerability is known as CVE-2024-8347. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-8347 | SourceCodester Computer Laboratory Management System 1.0 Master.php delete_record id sql injection

Post correlati

CVE-2024-33211 | Tenda FH1206 1.2.0.8(8155)_EN ip/goform/QuickIndex PPPOEPassword stack-based overflow

CVE-2024-10198 | code-projects Pharmacy Management System 1.0 Manage Customer Page /manage_customer.php suppliers_name/address cross site scripting

CVE-2024-5420 | SEH Computertechnik utnserver Pro/utnserver ProMAX/INU-100 up to 20.1.22 Web Interface cross site scripting

CVE-2024-2003 | ESET NOD32 Antivirus prior 1610 privileges management