Sql injection

2023-12-2817:15:00

PRIOn knowledge base

www.prio-n.com

vulnerability

code-projects

membership management

sql injection

user registration

public disclosure

vdb-249134

7.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

27.5%

JSON

A vulnerability was found in code-projects Intern Membership Management System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /user_registration/ of the component User Registration. The manipulation of the argument userName leads to sql injection. The exploit has been disclosed to the public and may be used. VDB-249134 is the identifier assigned to this vulnerability.

CPENameOperatorVersion
intern_membership_management_systemeq2.0

CPE	Name	Operator	Version
	intern_membership_management_system	eq	2.0

References

github.com/h4md153v63n/CVEs/blob/main/Intern_Membership_Management_System/Intern_Membership_Management_System-SQL-Injection.md

vuldb.com/?ctiid.249134

vuldb.com/?id.249134