SQL Injection Vulnerability in Employee Management System
CVE-2024-25239

Currently unrated

Key Information:

Vendor: Sourcecodester
Status: Employee Management System
Vendor: CVE Published:; 21 March 2024

🔔 Create Sourcecodester Vulnerability Alert

What is CVE-2024-25239?

SQL Injection vulnerability in Sourcecodester Employee Management System v1.0 allows attackers to run arbitrary SQL commands via crafted POST request to /emloyee_akpoly/Account/login.php.

References

https://blu3ming.github.io/sourcecodester-employee-manage...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 21, 2024
Vulnerability Reserved
Feb 7, 2024