Lucene search
HistoryFeb 08, 2024 - 9:15 p.m.
CVE-2024-24495
cve-2024-24495
sql injection
delete-tracker.php
daily habit tracker
nvd
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
69.0%
SQL Injection vulnerability in delete-tracker.php in Daily Habit Tracker v.1.0 allows a remote attacker to execute arbitrary code via crafted GET request.
Affected configurations
Node
remyandradedaily_habit_trackerMatch1.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| remyandrade:daily_habit_tracker | remyandrade daily habit tracker | eq | 1.0 |
Related
zdt
zdt
Daily Habit Tracker 1.0 - SQL Injection Vulnerability
2024-04-02 00:00:00
nvd
nvd
CVE-2024-24495
2024-02-08 21:15:08
prion
prion
Sql injection
2024-02-08 21:15:00
packetstorm
packetstorm
Daily Habit Tracker 1.0 SQL Injection
2024-04-02 00:00:00
cvelist
cvelist
CVE-2024-24495
2024-02-08 00:00:00
exploitdb
exploitdb
Daily Habit Tracker 1.0 - SQL Injection
2024-04-02 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
69.0%
Related for CVE-2024-24495