CVE-2024-8347 | SourceCodester Computer Laboratory Management System 1.0 Master.php delete_record id sql injection

Posted by Angelo Barbosa | Aug 30, 2024 | CVE

A vulnerability classified as critical was found in SourceCodester Computer Laboratory Management System 1.0. Affected by this vulnerability is the function delete_record of the file /classes/Master.php?f=delete_record. The manipulation of the argument id leads to sql injection.

This vulnerability is known as CVE-2024-8347. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-8347 | SourceCodester Computer Laboratory Management System 1.0 Master.php delete_record id sql injection

Related Posts

CVE-2024-31813 | Totolink EX200 4.0.3c.7646_B20201211 missing authentication

CVE-2024-20007 | MediaTek MT8798 mp3 Decoder out-of-bounds write (ALPS08441369)

CVE-2024-1785 | Contests by Rewards Fuel Plugin up to 2.0.62 on WordPress cross-site request forgery

CVE-2023-52239 | Magic xpi Integration Platform 4.13.4 XML Parser onItemImport xml external entity reference