Lucene search

CVE-2024-5118

🗓️ 20 May 2024 05:10:15Reported by VulDBType

cve🔗 web.nvd.nist.gov👁 40 Views🌐 WEB

Vulnerability in SourceCodester Event Registration System 1.0 allows remote SQL injection via /admin/login.ph

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 3
NVD	CVE-2024-5118	20 May 202405:15	–	nvd
Vulnrichment	CVE-2024-5118 SourceCodester Event Registration System login.php sql injection	20 May 202405:00	–	vulnrichment
Cvelist	CVE-2024-5118 SourceCodester Event Registration System login.php sql injection	20 May 202405:00	–	cvelist

Nvd

Vulners

Vulnrichment

Node

oretnom23 event_registration_systemMatch1.0

[
  {
    "vendor": "SourceCodester",
    "product": "Event Registration System",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/BurakSevben/CVEs/blob/main/Event%20Registration%20System/Event%20Registration%20System%20-%20SQL%20Injection%20-%201.md
vuldb	www.vuldb.com/

Parameter	Position	Path	Description	CWE
username	request body	/admin/login.php	SQL injection vulnerability in the login process due to improper input validation of username and password.	CWE-89
password	request body	/admin/login.php	SQL injection vulnerability in the login process due to improper input validation of username and password.	CWE-89

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 May 2024 05:15Current

7.5High risk

Vulners AI Score7.5

CVSS27.5

CVSS37.3 - 9.8

CVSS46.9

EPSS0.00039

SSVC

CWE-89