ГлавнаяУязвимости → CVE-2024-0182
7.3высокая

CVE-2024-0182

Описание

A vulnerability was found in SourceCodester Engineers Online Portal 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/ of the component Admin Login. The manipulation of the argument username/password leads to sql injection. The attack may be launched remotely. The identifier of this vulnerability is VDB-249440.

Затрагиваемое ПО
Janobe Engineers online portal
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://vuldb.com/?ctiid.249440https://vuldb.com/?id.249440https://vuldb.com/?ctiid.249440https://vuldb.com/?id.249440