CVE-2024-31506

2024-04-0900:00:00

mitre

github.com

sourcecodester graduate tracer system

sql injection

admin page

AI Score

8.3

Confidence

Low

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

Sourcecodester Online Graduate Tracer System v1.0 is vulnerable to SQL Injection via the “id” parameter in admin/admin_cs.php.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:online_graduate_tracer_system_project:online_graduate_tracer_system:1.0:*:*:*:*:*:*:*"
    ],
    "vendor": "online_graduate_tracer_system_project",
    "product": "online_graduate_tracer_system",
    "versions": [
      {
        "status": "affected",
        "version": "1.0"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

github.com/CveSecLook/cve/issues/4