CVE-2024-7069 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Master.php id sql injection

Posted by Angelo Barbosa | Jul 24, 2024 | CVE

A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. This issue affects some unknown processing of the file /employee_gatepass/classes/Master.php?f=delete_department. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2024-7069. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-7069 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Master.php id sql injection

Related Posts

CVE-2023-49798 | OpenZeppelin openzeppelin-contracts 4.9.4 Subcall control flow (GHSA-699g-q6qh-q4v8)

CVE-2024-37003 | Autodesk AutoCAD DWG File Parser stack-based overflow

CVE-2023-6992 | Cloudflare zlib deflate.c heap-based overflow (8352d10)

CVE-2024-34089 | Archer Platform prior 2024.04 Trusted Application Data Store cross site scripting