SourceCodester Online Admission System GET Parameter sql injection
CVE-2022-2644

5.5MEDIUM

Key Information:

Vendor: Sourcecodester
Status: Online Admission System
Vendor: CVE Published:; 4 August 2022

Summary

A vulnerability was found in SourceCodester Online Admission System and classified as critical. This issue affects some unknown processing of the component GET Parameter Handler. The manipulation of the argument eid leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier VDB-205565 was assigned to this vulnerability.

Affected Version(s)

Online Admission System

References

https://github.com/badboycxcc/Student-Admission-Sqlinjection

x_refsource_MISC

https://vuldb.com/?id.205565

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 4, 2022
Vulnerability Reserved
Aug 4, 2022