CVE-2024-3088 | PHPGurukul Emergency Ambulance Hiring Portal 1.0 Forgot Password Page forgot-password.php username sql injection

Posted by Angelo Barbosa | Mar 29, 2024 | CVE

A vulnerability, which was classified as critical, was found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. This affects an unknown part of the file /admin/forgot-password.php of the component Forgot Password Page. The manipulation of the argument username leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-3088. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-3088 | PHPGurukul Emergency Ambulance Hiring Portal 1.0 Forgot Password Page forgot-password.php username sql injection

Related Posts

CVE-2024-4170 | Tenda 4G300 1.01.42 sub_429A30 list1 stack-based overflow

CVE-2024-1249 | Keycloak checkLoginIframe cross-domain policy

CVE-2024-32658 | FreeRDP up to 3.5.0 out-of-bounds (GHSA-vpv3-m3m9-4c2v)

CVE-2024-30213 | StoneFly Storage Concentrator prior 8.0.4.26 Ping URL command injection