CVE-2024-1009
published 2024-01-29CVE-2024-1009: A vulnerability was found in SourceCodester Employee Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A vulnerability was found in SourceCodester Employee Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Admin/login.php. The manipulation of the argument txtusername leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-252278 is the identifier assigned to this vulnerability.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| employee_management_system_project | employee_management_system | — | — |
| msrc | azure_kubernetes_service_node_on_azure_linux | — | — |
| msrc | azure_kubernetes_service_node_on_ubuntu_linux | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| sourcecodester | employee_management_system | — | — |