CVE-2024-5118 | SourceCodester Event Registration System 1.0 /admin/login.php username/password sql injection

Posted by Angelo Barbosa | May 19, 2024 | CVE

A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/login.php. The manipulation of the argument username/password leads to sql injection.

This vulnerability was named CVE-2024-5118. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-5118 | SourceCodester Event Registration System 1.0 /admin/login.php username/password sql injection

Related Posts

CVE-2024-37632 | TOTOLINK A3700R 9.1.2u.6165_20211012 loginAuth password stack-based overflow

CVE-2024-42112 | Linux Kernel up to 6.9.8 txgbe wx_free_isb_resources information disclosure (efdc3f542998/935124dd5883)

CVE-2023-52493 | Linux Kernel up to 5.10.209/5.15.148/6.1.75/6.6.14/6.7.2 mhi parse_xfer_event denial of service

CVE-2024-0574 | Totolink LR1200GB 9.1.0u.6619_B20230130 /cgi-bin/cstecgi.cgi setParentalRules sTime stack-based overflow