A vulnerability, which was classified as critical, was found in SourceCodester Simple Online Bidding System 1.0. Affected is an unknown function of the file /simple-online-bidding-system/admin/index.php?page=manage_user. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-264468.
Metrics
Affected Vendors & Products
References
History
Mon, 09 Dec 2024 23:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Oretnom23
Oretnom23 simple Online Bidding System |
|
CPEs | cpe:2.3:a:oretnom23:simple_online_bidding_system:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Oretnom23
Oretnom23 simple Online Bidding System |
MITRE
Status: PUBLISHED
Assigner: VulDB
Published: 2024-05-16T04:31:05.376Z
Updated: 2024-08-01T20:55:10.273Z
Reserved: 2024-05-15T12:23:24.896Z
Link: CVE-2024-4932
Vulnrichment
Updated: 2024-08-01T20:55:10.273Z
NVD
Status : Analyzed
Published: 2024-05-16T05:15:51.653
Modified: 2024-12-09T22:50:41.213
Link: CVE-2024-4932
Redhat
No data.