CVE-2024-53364 β€” SQL Injection in Vehicle Parking Management System

CWE-89 β€” SQL Injection3 documents3 sources
Severity
5.4MEDIUMNVD
EPSS
0.1%
top 81.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Phpgurukul Vehicle Parking Management System
Timeline
PublishedDec 2

Description

A SQL injection vulnerability was found in PHPGURUKUL Vehicle Parking Management System v1.13 in /users/view-detail.php. This vulnerability affects the viewid parameter, where improper input sanitization allows attackers to inject malicious SQL queries.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.5

Affected Packages1 packages

πŸ”΄Vulnerability Details

2
GHSA
GHSA-qq74-3r8j-w4c9: A SQL injection vulnerability was found in PHPGURUKUL Vehicle Parking Management System v1β†—2024-12-02
β–Ά
CVEList
CVE-2024-53364: A SQL injection vulnerability was found in PHPGURUKUL Vehicle Parking Management System v1β†—2024-12-02
β–Ά
CVE-2024-53364 β€” SQL Injection | cvebase