A vulnerability was found in code-projects Library System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file Source/librarian/user/student/registration.php. The manipulation of the argument email/regno/phone/username leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-254617 was assigned to this vulnerability.
Metrics
Affected Vendors & Products
References
History
Fri, 06 Dec 2024 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Code-projects
Code-projects library System |
|
CPEs | cpe:2.3:a:code-projects:library_system:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Code-projects
Code-projects library System |
MITRE
Status: PUBLISHED
Assigner: VulDB
Published: 2024-02-23T18:00:14.601Z
Updated: 2024-08-01T18:56:22.377Z
Reserved: 2024-02-23T10:33:31.534Z
Link: CVE-2024-1829
Vulnrichment
Updated: 2024-08-01T18:56:22.377Z
NVD
Status : Analyzed
Published: 2024-02-23T18:15:50.517
Modified: 2024-12-06T16:20:39.807
Link: CVE-2024-1829
Redhat
No data.