A vulnerability was found in code-projects Library System 1.0. It has been classified as critical. Affected is an unknown function of the file Source/librarian/user/teacher/registration.php. The manipulation of the argument email/idno/phone/username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-254616.
History

Fri, 06 Dec 2024 16:45:00 +0000

Type Values Removed Values Added
First Time appeared Code-projects
Code-projects library System
CPEs cpe:2.3:a:code-projects:library_system:1.0:*:*:*:*:*:*:*
Vendors & Products Code-projects
Code-projects library System

cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2024-02-23T18:00:12.764Z

Updated: 2024-08-27T20:46:18.494Z

Reserved: 2024-02-23T10:33:27.868Z

Link: CVE-2024-1828

cve-icon Vulnrichment

Updated: 2024-08-01T18:56:21.054Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-23T18:15:50.263

Modified: 2024-12-06T16:22:23.323

Link: CVE-2024-1828

cve-icon Redhat

No data.