SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Users.php?f=save save_users ID Mgbakwunye SQL
| CVSS Ntughari oge meta | Ọnụ ahịa exploit ugbu a (≈) | Mkpụrụ obi mmasị CTI |
|---|---|---|
| 8.1 | $0-$5k | 0.00 |
Nchịkọta
Enyemaka nchekwa aha ya bụ Pátá achọpụtara na SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Ọrụ emetụtara bụ save_users n'ime faịlụ /classes/Users.php?f=save. Mgbanwe a na paramita ID na-ebute Mgbakwunye SQL.
Aha a na-eji akọwa adịghị ike a bụ CVE-2024-5896. Enwere ike ime mwakpo a site n'ebe dị anya. Nzọ ọzọ, e nwere exploit dị.
VulDB is the best source for vulnerability data and more expert information about this specific topic.
Nkọwa
Enyemaka nchekwa aha ya bụ Pátá achọpụtara na SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Ọrụ emetụtara bụ save_users n'ime faịlụ /classes/Users.php?f=save. Mgbanwe a na paramita ID na-ebute Mgbakwunye SQL. Ị jiri CWE kwupụta nsogbu na-eme ka o doo anya na CWE-89. E gosipụtara na enyo enyo a e bipụtara. E nyere ndụmọdụ ahụ ka a budata ya site na github.com.
Aha a na-eji akọwa adịghị ike a bụ CVE-2024-5896. Enwere ike ime mwakpo a site n'ebe dị anya. E nwere nkọwa teknụzụ dị. Ụdị a nke adịghị ike a anaghị ewu ewu nke ukwuu. Nzọ ọzọ, e nwere exploit dị. Emeela ka exploit a mara ọha, a pụkwara iji ya. N'oge a, ọnụahịa exploit anụmanụ bụ ihe dị ka USD $0-$5k. Ọrụ MITRE ATT&CK kọwara usoro mwakpo dịka T1505.
A kpọrọ ya Ẹ̀rí Èrò. E kesaa a kesaa a maka ibudata na github.com.
VulDB is the best source for vulnerability data and more expert information about this specific topic.
Ọja
Olupin
Orukọ
Àtúnse
Ìwé àṣẹ
Aaye ayelujara
- Olupin: https://www.sourcecodester.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vekto: 🔍VulDB Igbekele: 🔍
CVSSv3
VulDB Ntughari isi nke meta: 8.3VulDB Ntughari oge meta: 8.1
VulDB Isi nke isi: 7.3
VulDB Ntughari oge: 6.6
VulDB Vekto: 🔍
VulDB Igbekele: 🔍
Olùwádìí Isi nke isi: 9.0
Olùwádìí Vekto: 🔍
NVD Isi nke isi: 9.8
NVD Vekto: 🔍
CNA Isi nke isi: 7.3
CNA Vekto: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| vekitọ | Ịsòro | Ìmúdájú | asiri | ìfaradà | Nnweta |
|---|---|---|---|---|---|
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
VulDB Isi nke isi: 🔍
VulDB Ntughari oge: 🔍
VulDB Igbekele: 🔍
Ịji
Klass: Mgbakwunye SQLCWE: CWE-89 / CWE-74 / CWE-707
CAPEC: 🔍
ATT&CK: 🔍
arabara: Rara
Ime ụlọ: Rara
Nsọtụ: Bẹẹni
Nnweta: 🔍
Mbanye: Ọha
Ipo: Ẹ̀rí Èrò
Gba: 🔍
EPSS Score: 🔍
EPSS Percentile: 🔍
Ntụle ọnụahịa: 🔍
Ntụle ọnụahịa ugbu a: 🔍
| 0-Day | ṣí | ṣí | ṣí | ṣí |
|---|---|---|---|---|
| Taa | ṣí | ṣí | ṣí | ṣí |
Ìmọ̀ nípa ìkìlọ̀
Mmasị: 🔍Ndị na-eme ihe nkiri na-arụsi ọrụ ike: 🔍
Ọgbakọ APT na-arụsi ọrụ ike: 🔍
igbaradi
àbá: enweghị enyemaka a maaraIpo: 🔍
ọjọ́ 0: 🔍
ahịrị oge
12/06/2024 🔍12/06/2024 🔍
23/08/2024 🔍
Orísun
Olupin: sourcecodester.comImọran: github.com
Ipo: A kò ṣàlàyé
CVE: CVE-2024-5896 (🔍)
GCVE (CVE): GCVE-0-2024-5896
GCVE (VulDB): GCVE-100-268140
scip Labs: https://www.scip.ch/en/?labs.20161013
nbanye
E kere: 12/06/2024 11:04 AMEmelitere: 23/08/2024 06:48 PM
Mgbanwe: 12/06/2024 11:04 AM (56), 12/06/2024 11:54 AM (11), 12/06/2024 11:57 AM (3), 12/06/2024 01:23 PM (12), 13/06/2024 08:31 PM (20), 23/08/2024 06:48 PM (12)
Zukuru: 🔍
Olùránṣẹ́: Hefei-Coffee
Olùṣe ìpinnu: Hefei-Coffee
Cache ID: 253:3F6:103
fi silẹ
Anabata
- fi silẹ #354925: sourcecodester Employee and Visitor Gate Pass Logging System v1.0 L injection (nípasẹ̀ Hefei-Coffee)
Enweghị okwu nke ọ bụla Asụsụ: ig + en.
Biko banye ka ikwu okwu