CVE-2024-8709

A vulnerability classified as critical has been found in SourceCodester

Publication date: 2024-09-12

Last updated on: 2024-09-13

Description

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. Affected is the function delete_usersave_user of the file admin_class.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

CVSS Scores

Affected Vendors & Products

Currently, no data is known.

Helpful Resources

Third Party Advisory, VDB Entry
Permissions Required
Third Party Advisory, VDB Entry
Exploit, Third Party Advisory
Product

Exploitability

CWE ID	Description
CWE-89	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Ask Our AI Assistant

Need more information? Ask your question to get an AI reply (Powered by our expertise)

0/70

Meta Information

Date published:

2024-09-12

Date last modified:

2024-09-13

Date generated:

2025-01-15

NVD report:

CVE-2024-8709