A SQL injection vulnerability in "/music/ajax.php?action=login" of Kashipara Music Management System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the email parameter.
Metrics
Affected Vendors & Products
References
History
Fri, 23 Aug 2024 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Lopalopa
Lopalopa music Management System |
|
CPEs | cpe:2.3:a:lopalopa:music_management_system:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Lopalopa
Lopalopa music Management System |
Thu, 22 Aug 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Kashipara
Kashipara music Management System |
|
Weaknesses | CWE-89 | |
CPEs | cpe:2.3:a:kashipara:music_management_system:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Kashipara
Kashipara music Management System |
|
Metrics |
cvssV3_1
|
Wed, 21 Aug 2024 18:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A SQL injection vulnerability in "/music/ajax.php?action=login" of Kashipara Music Management System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the email parameter. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-08-21T00:00:00
Updated: 2024-08-22T13:46:18.639Z
Reserved: 2024-08-05T00:00:00
Link: CVE-2024-42781
Vulnrichment
Updated: 2024-08-22T13:46:11.070Z
NVD
Status : Analyzed
Published: 2024-08-21T18:15:10.227
Modified: 2024-08-23T16:15:43.970
Link: CVE-2024-42781
Redhat
No data.