Lucene search

MitreVULNRICHMENT:CVE-2024-40472

HistoryAug 09, 2024 - 12:00 a.m.

CVE-2024-40472

2024-08-0900:00:00

mitre

github.com

sourcecodester daily calories monitoring tool

sql injection

vulnerability

delete-calorie.php

cve-2024-40472

AI Score

8.4

Confidence

Low

EPSS

0.001

Percentile

39.6%

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

Sourcecodester Daily Calories Monitoring Tool v1.0 is vulnerable to SQL Injection via “delete-calorie.php.”

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:sourcecodester:daily_calories_monitoring_tool:1.0:*:*:*:*:*:*:*"
    ],
    "vendor": "sourcecodester",
    "product": "daily_calories_monitoring_tool",
    "versions": [
      {
        "status": "affected",
        "version": "1.0"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

github.com/takekaramey/CVE_Writeup/blob/main/Sourcecodester/Daily%20Calories%20Monitoring%20Tool%20v1.0/SQL%20Injection.pdf

www.sourcecodester.com/php/17445/daily-calories-monitoring-tool-using-php-and-mysql-source-code.html