CVE-2024-5365

CWE-89SQL Injection2 documents2 sources
Severity
5.3MEDIUM
EPSS
0.1%
top 81.47%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Sourcecodester Best House Rental Management SystemMayurik Best House Rental Management System
Timeline
PublishedMay 26

Description

A vulnerability, which was classified as critical, was found in SourceCodester Best House Rental Management System up to 1.0. This affects an unknown part of the file manage_payment.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-266277 was assigned to this vulnerability.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Affected Packages2 packages

🔴Vulnerability Details

1
CVEList
SourceCodester Best House Rental Management System manage_payment.php sql injection2024-05-26
CVE-2024-5365 (MEDIUM CVSS 5.3) | A vulnerability | cvebase.io