2 matches found
CVE-2024-8347
CVE-2024-8347 affects SourceCodester Computer Laboratory Management System 1.0. The vulnerable component is the delete_record function in /classes/Master.php?f=delete_record, where manipulation of the id parameter leads to SQL injection. The issue enables remote exploitation and the exploit has b...
CVE-2024-3376
CVE-2024-3376 affects SourceCodester Computer Laboratory Management System 1.0. The vulnerability is in the config.php file, where manipulation of the url parameter leads to execution after redirect, enabling remote initiation of an attack. Exploit details are publicly disclosed per the sources. ...