SQL Injection Vulnerability in SourceCodester Complaints Report Management System by SourceCodester
CVE-2024-7199

8.8HIGH

Key Information:

Vendor: Oretnom23
Status: Complaints Report Management System
Vendor: CVE Published:; 29 July 2024

What is CVE-2024-7199?

A SQL injection vulnerability exists in the SourceCodester Complaints Report Management System version 1.0, specifically within the /admin/manage_user.php file. This vulnerability arises when unvalidated input is processed through the 'id' parameter, allowing attackers to manipulate SQL queries executed by the application. The potential for remote exploitation raises significant security concerns, as this flaw could lead to unauthorized access to sensitive data or control over the database. The vulnerability has been publicly disclosed, increasing the urgency for organizations using this software to implement necessary patches and enhance their security measures.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://vuldb.com/?id.272620

https://vuldb.com/?ctiid.272620

https://vuldb.com/?submit.380421

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 29, 2024

JSON

Oretnom23

What is CVE-2024-7199?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.