exploitDog

CVE-2024-30981

Опубликовано: 17 апр. 2024

Источник: nvd

CVSS3: 9.8

CVSS3: 4.3

EPSS Низкий

Описание

SQL Injection vulnerability in /edit-computer-detail.php in phpgurukul Cyber Cafe Management System Using PHP & MySQL v1.0 allows attackers to run arbitrary SQL commands via editid in the application URL.

Ссылки

https://medium.com/%40shanunirwan/cve-2024-30981-sql-injection-vulnerability-in-cyber-cafe-management-system-using-php-mysql-v1-0-534676f9bdeb
Exploit
Third Party Advisory
https://medium.com/%40shanunirwan/cve-2024-30981-sql-injection-vulnerability-in-cyber-cafe-management-system-using-php-mysql-v1-0-534676f9bdeb
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpgurukul:cyber_cafe_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 30%

0.00107

Низкий

9.8 Critical

CVSS3

4.3 Medium

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-7c7j-m7mw-3vfh

CVSS3: 4.3

github

почти 2 года назад

SQL Injection vulnerability in /edit-computer-detail.php in phpgurukul Cyber Cafe Management System Using PHP & MySQL v1.0 allows attackers to run arbitrary SQL commands via editid in the application URL.

EPSS

Процентиль: 30%

0.00107

Низкий

9.8 Critical

CVSS3

4.3 Medium

CVSS3

Дефекты

CWE-89