CVE-2024-28613

2024-04-2400:00:00

mitre

github.com

php

sql injection

task management

AI Score

Confidence

Low

SSVC

Exploitation

none

Automatable

yes

Technical Impact

total

JSON

SQL Injection vulnerability in PHP Task Management System v.1.0 allows a remote attacker to escalate privileges and obtain sensitive information via the task_id parameter of the task-details.php, and edit-task.php component.

References

github.com/hakkitoklu/hunt/blob/main/PHP%20Task%20Management%20System/sqli.md

www.sourcecodester.com/php/17217/employee-management-system-php-and-mysql-free-download.html