CVE-2024-0182 | SourceCodester Engineers Online Portal 1.0 Admin Login /admin/ username/password sql injection

Posted by Angelo Barbosa | Jan 1, 2024 | CVE

A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/ of the component Admin Login. The manipulation of the argument username/password leads to sql injection.

This vulnerability is handled as CVE-2024-0182. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-0182 | SourceCodester Engineers Online Portal 1.0 Admin Login /admin/ username/password sql injection

Related Posts

CVE-2024-22416 | pyLoad up to 0.5.0b3.dev77 API cross-site request forgery (GHSA-pgpj-v85q-h5fm)

CVE-2024-41704 | LibreChat up to 0.7.4-rc1 Image pathname traversal

CVE-2022-34560 | PHPFox 4.8.9 History cross site scripting

CVE-2024-23174 | MediaWiki up to 1.35.13/1.39.5/1.40.1 PageTriage Extension cross site scripting