SQL Injection Vulnerability in SourceCodester Simple Realtime Quiz System
CVE-2024-7378
9.8CRITICAL
What is CVE-2024-7378?
An SQL injection vulnerability exists in the SourceCodester Simple Realtime Quiz System version 1.0, specifically in the /manage_question.php file. The vulnerability allows an attacker to manipulate requests that involve the 'id' parameter, leading to unauthorized database access and potential data breaches. This can be exploited remotely, making it imperative for users of the affected system to apply necessary updates and security measures promptly. Given the exposure of the exploit to the public, immediate action is recommended to safeguard sensitive data.