A vulnerability was found in SourceCodester Internship Portal Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file admin/edit_activity_query.php. The manipulation of the argument title/description/start/end leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-259106 is the identifier assigned to this vulnerability.
References
Configurations
No configuration.
History
11 Apr 2024, 01:25
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
03 Apr 2024, 13:16
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-03 13:16
Updated : 2024-05-17 02:39
NVD link : CVE-2024-3257
Mitre link : CVE-2024-3257
CVE.ORG link : CVE-2024-3257
JSON object : View
Products Affected
No product.
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')