2 matches found
CVE-2024-3420
CVE-2024-3420 affects SourceCodester Online Courseware 1.0, specifically the file admin/saveedit.php where the id parameter is injectable, leading to SQL injection. The vulnerability can be exploited remotely and exploits have been publicly disclosed. NVD lists a CVSS v3.1 base score of 9.8 (CRIT...
CVE-2024-3416
SourceCodester Online Courseware 1.0 contains a SQL injection vulnerability in admin/editt.php via the id parameter. The issue allows remote exploitation and is publicly disclosed (CVE-2024-3416, VDB-259588). Root cause: improper handling of the id argument enables SQL injection. Affected compone...