A SQL Injection vulnerability was found in /covid-tms/password-recovery.php in PHPGurukul COVID 19 Testing Management System v1.0, which allows remote attackers to execute arbitrary code via the contactno POST request parameter.
Metrics
Affected Vendors & Products
References
History
Wed, 27 Nov 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Phpgurukul
Phpgurukul covid19 Testing Management System |
|
Weaknesses | CWE-89 | |
CPEs | cpe:2.3:a:phpgurukul:covid19_testing_management_system:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Phpgurukul
Phpgurukul covid19 Testing Management System |
|
Metrics |
cvssV3_1
|
Wed, 27 Nov 2024 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A SQL Injection vulnerability was found in /covid-tms/password-recovery.php in PHPGurukul COVID 19 Testing Management System v1.0, which allows remote attackers to execute arbitrary code via the contactno POST request parameter. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-11-27T00:00:00
Updated: 2024-11-27T15:19:11.501Z
Reserved: 2024-11-20T00:00:00
Link: CVE-2024-53603
Vulnrichment
Updated: 2024-11-27T15:08:40.987Z
NVD
Status : Received
Published: 2024-11-27T14:15:18.943
Modified: 2024-11-27T16:15:14.583
Link: CVE-2024-53603
Redhat
No data.