CVE-2024-2554 | SourceCodester Employee Task Management System 1.0 update-employee.php admin_id sql injection

Posted by Angelo Barbosa | Mar 16, 2024 | CVE

A vulnerability has been found in SourceCodester Employee Task Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file update-employee.php. The manipulation of the argument admin_id leads to sql injection.

This vulnerability is known as CVE-2024-2554. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-2554 | SourceCodester Employee Task Management System 1.0 update-employee.php admin_id sql injection

Related Posts

CVE-2023-5955 | Contact Form Email Plugin up to 1.3.43 on WordPress Setting cross site scripting

CVE-2024-3935 | Eclipse Mosquitto up to 2.0.18 PUBLISH Packet double free (Issue 197)

CVE-2024-27020 | Linux Kernel up to 5.15.156/6.1.87/6.6.28/6.8.7/6.9-rc4 nf_tables __nft_expr_type_get race condition

CVE-2024-42239 | Linux Kernel up to 6.6.40/6.9.9 bpf bpf_timer_cancel deserialization (936983051868/3e4e8178a866/d4523831f07a)