CVE-2024-7676 | Sourcecodester Car Driving School Management System 1.0 Master.php save_package id sql injection

Posted by Angelo Barbosa | Aug 10, 2024 | CVE

A vulnerability was found in Sourcecodester Car Driving School Management System 1.0. It has been classified as critical. Affected is the function save_package of the file /classes/Master.php?f=save_package. The manipulation of the argument id leads to sql injection.

This vulnerability is traded as CVE-2024-7676. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-7676 | Sourcecodester Car Driving School Management System 1.0 Master.php save_package id sql injection

Related Posts

CVE-2024-2203 | Plus Addons for Elementor Plugin up to 5.4.1 on WordPress Clients Widget file inclusion

VDB-254692 | Microsoft Windows Defender access control

CVE-2024-28183 | Espressif ESP-IDF up to 4.4.6/5.0.6/5.1.3/5.2.0 Anti-Rollback Protection toctou (GHSA-22×6-3756-pfp8)

CVE-2021-46902 | Meinberg LANTIME prior 6.24.029 MBGID-9343/7.04.008 MBGID-6303 LTOS-Web-Interface access control