Back

CVE-2024-40402

July 17, 2024, 8:15 p.m.

Received
CVE has been recently published to the CVE List and has been received by the NVD.

Products

Simple Library Management System

  • 1.0

Source

cve@mitre.org

Tags

cve@mitre.org
2024-07-17
CVE-2024-40402

CVE-2024-40402 details

Published : July 17, 2024, 8:15 p.m.
Last Modified : July 17, 2024, 8:15 p.m.

Description

A SQL injection vulnerability was found in 'ajax.php' of Sourcecodester Simple Library Management System 1.0. This vulnerability stems from insufficient user input validation of the 'username' parameter, allowing attackers to inject malicious SQL queries.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://github.com/CveSecLook/cve/issues/49 cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.