SQL Injection Vulnerability in Employee Management System
CVE-2024-25239

Currently unrated

Key Information:

Vendor
Sourcecodester
Status
Employee Management System
Vendor
CVE Published:
21 March 2024

Summary

SQL Injection vulnerability in Sourcecodester Employee Management System v1.0 allows attackers to run arbitrary SQL commands via crafted POST request to /emloyee_akpoly/Account/login.php.

References

https://blu3ming.github.io/sourcecodester-employee-manage...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.