SQL Injection Vulnerability in SourceCodester Petrol Pump Management Software 1.0
CVE-2024-10407
7.2HIGH
What is CVE-2024-10407?
A significant SQL injection vulnerability exists in SourceCodester Petrol Pump Management Software version 1.0, specifically related to parameter manipulation within the file /admin/edit_customer.php. By exploiting the vulnerability, attackers can execute arbitrary SQL commands, potentially compromising database integrity and confidentiality. The vulnerability can be exploited remotely, making it a considerable risk for systems running the affected software. Organizations are advised to immediately apply security patches and implement monitoring measures to secure their databases against potential exploitation.
Affected Version(s)
Petrol Pump Management Software 1.0