Unrated severityNVD Advisory· Published Aug 30, 2024· Updated Aug 30, 2024
SourceCodester Computer Laboratory Management System SystemSettings.php update_settings_info sql injection
CVE-2024-8346
Description
A vulnerability classified as critical has been found in SourceCodester Computer Laboratory Management System 1.0. Affected is the function update_settings_info of the file /classes/SystemSettings.php?f=update_settings. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =1.0
- SourceCodester/Computer Laboratory Management Systemv5Range: 1.0
Patches
Vulnerability mechanics
References
5- github.com/gaorenyusi/gaorenyusi/blob/main/lms1.mdmitreexploit
- vuldb.commitrethird-party-advisory
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
- www.sourcecodester.commitreproduct
News mentions
0No linked articles in our index yet.