SQL Injection Vulnerability in Sourcecodester Complaint Management System
CVE-2020-24932
9.8CRITICAL
What is CVE-2020-24932?
An SQL Injection vulnerability exists in the Sourcecodester Complaint Management System 1.0. This flaw is triggered through the 'cid' parameter in the complaint-details.php file, allowing attackers to manipulate SQL queries. Exploiting this vulnerability could enable unauthorized access to sensitive data and may result in data breach incidents, which could severely compromise the integrity and confidentiality of the affected application.