CVE-2024-5976 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Master.php log_employee employee_code sql injection

Posted by Angelo Barbosa | Jun 13, 2024 | CVE

A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been classified as critical. Affected is the function log_employee of the file /classes/Master.php?f=log_employee. The manipulation of the argument employee_code leads to sql injection.

This vulnerability is traded as CVE-2024-5976. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-5976 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Master.php log_employee employee_code sql injection

Related Posts

CVE-2023-3907 | GitLab Enterprise Edition prior 16.4.4/16.5.4/16.6.2 Project Access Token privileges management (Issue 418878)

CVE-2024-7886 | Scooter Software Beyond Compare up to 3.3.5.15075 7zxa.dll uncontrolled search path

CVE-2024-42991 | MCMS 5.4.1 unrestricted upload

CVE-2024-32880 | pyload-ng unrestricted upload